DOWN BOY. Security firm Blue Coat Systems has warned that malware called Dogspectus is currently aiming itself at your elderly Android smartphone and tablet.
"An exploit kit being used to deliver ransomware to Android devices uses several vulnerabilities to install malware onto the victim's phone or tablet silently in the background," said Blue Coat director of threat research Andrew Brandt in a blog post.
The UK has a particular problem with Android malware, and Dogspectus is a new twist on an old trick, according to Brandt.
"This is the first time, to my knowledge, that an exploit kit has been able to successfully install malicious apps on a mobile device without any user interaction on the part of the victim.
"During the attack, the device did not display the normal ‘application permissions' dialogue box that typically precedes installation of an Android application."
The test device was running the Cyanogenmod 10 version of Android 4.2.2 at the time it was infected, suggesting that older phones and tablets might be vulnerable.
"Older devices, which have not been updated (nor are likely to be updated) with the latest version of Android, may remain susceptible to this type of attack," said Brandt.
"That includes so-called media player devices meant to be connected to TVs, many of which run the 4.x branch of Android.
"Some of these older Android devices are now in the same situation as PCs running Windows XP. The OS may still work, despite no longer receiving updates, but using it constitutes a serious risk of infection."
Most ransomware attacks demand payment in bitcoins, but the Dogspectus hackers want iTunes giftcards, which could be an important clue as to the culprits.
"The ransomware doesn't threaten to (or actually) encrypt the victim's data. Rather, the device is held in a locked state where it cannot be used for anything other than delivering payment to the criminals in the form of two $100 Apple iTunes gift card codes," said Brandt.
"That's unusual because it's far more common nowadays for ransomware to demand non-trackable cryptocurrency like bitcoins. In theory, it might be possible for Apple (or its iTunes gift card partners) to track who used the gift cards provided to the criminals, which may help investigators identify them."
Anyway, no-one ever recommends paying ransomware demands. Brandt advised backing up content to avoid being caught out. µ
To hear more about security challenges, the threats they pose and how to combat them, sign up for The INQUIRER sister site Computing's Enterprise Security and Risk Management conference, taking place on 24 November.
Firm's first high-end speaker gets the thumbs up from us
Yes. Yes you can
A fantastic ultraportable that's almost devoid of innovation
Screen if you want to go faster