The virus is called Loapi and was spotted by the Kaspersky team who had their test phone destroyed just two days after being infected with the malware
Holy shit Android is basically Windows for malware. You can get infected just by clicking on an ad.
Other urls found in this thread:
arstechnica.com
theverge.com
techrepublic.com
scmagazine.com
engadget.com
cvedetails.com
express.co.uk
wired.com
blog.malwarebytes.com
zdnet.com
techrepublic.com
computerworld.com
zdnet.com
symantec.com
networkworld.com
gcn.com
zdnet.com
krackattacks.com
twitter.com
Loogle shills will defend this
Holy shit, and doesn't android stop receiving security updates 3 years after launch of the phone?
>actually clicking on an add
It natural selection at its finest
>not blocking ads
>clicking on an ad
>After the installation process is finished, the application tries to obtain device administrator permissions, asking for them in a loop until the user agrees.
So you have to manually install it and grant it permissions. Yawn.
>not using common sense as your primary malware protection
Do you think maybe it was because it was a kaspersky test phone that the virus did that?
Clicking on add just downloads the file. You have to install it by yourself. Literally not an issue.
>Android allows side loading
>this is a good thing when the same people using it are the same people using Windows
Ranjeet has defended this
>click on an ad
>download something
>install that thing
>run it
>give it root permission
>blame the OS
>Android allows side loading
Only if you enable it in settings. So, not only you have to enable it, but you also have to install the "virus" yourself, but you also have to give it permissions.
>During the installation, apps from an adware family known as Shedun try to trick people into granting the app control over the Android Accessibility Service
Yawn.
>he thinks normal users aren’t stupid enough to do this
These are the same people that turn off UAC and want FREE MINECRAFT COINS CLICK HERE
you have to give it permission to use the accessibility features first
This will get even worse over time as more and more pajeets switch to android and as more and more people using phones that don't receive OS or security updates (any phone that was released more than 3 years ago).
>Android is basically Windows
true that, they're both the largely dominant os for their category
I never said they aren't. Security is working as intended - it's not Android's problems the users are stupid enough to disable security. Meanwhile on Windows you can get a cryptolocker just by having your computer turned on(wannacry).
>he still thinks le andrones are le smart people
theverge.com
Number of non-jail broken iOS users (99.9% of devices) infected: 0
Does anyone have a sample of this malware?
If no sample, fake news.
>a phone that can't do anything can't get infected
WOAH
You could argue that the ux is part of the security, and Android is less secure than iOS by allowing you to fuck up to this degree. Normies would have a harder time getting infected on iOS, hence why many people say it's more secure (even though this same "protection" locks you out of stuff like f-droid).
In short, it depends on what you do and don't consider the OS's responsibility.
>.a phone that can't do anything
My phone can do anything except autistic ricing. In fact when it comes to demanding applications and stuff that requires a lot of power, it can do a lot of things that Android phones can't.
Can't be mugged if you're in jail.
Pretty much all Apple users thought process.
>be Android developer
>get identity stolen
techrepublic.com
>be android user
>update apps
>get infected
scmagazine.com
>be androne
>download from Play Store
>get keylogged
engadget.com
>security is working as intended
Yeah, absolutely ZERO lmao
special kinds of people are probably better off simply not being allowed to fuck themselves over
t. bootlicker
Sorry which platform has all the infected users sweetie?
Apple.
Windows.
>Any scenario still requires the user to install the malicious update from a source outside the Google Play store,
>and once a hacker is in, it's possible to trick someone into granting the a11y permission
Yawn.
Show me the millions of iPhone and iPad infections.
I’ll wait :)
>andreet could only address one link because he got btfo
Yawn
>millions of stupid chinks and Indians use poorfag android
>hurr we don’t need to protect our users
>actually caring this much over a fucking phone. Just don't be a nonce and you will be fine.
Trust quote is from the second link, second quote is from the third link, first link isn't even about Android.
Every device sold comes with iOS.
*first quote
>implement security measures
>user disables them
>wah Android is shit
>my os made by an advertising company to mine data is not the malware
Hahahahaha
>OS allows user to do this without further protections
Fucking hell
>physically melt phones
Not a virus, just a bitcoin miner
It is a user issue. It is a shit idea to fuck over developers that keep the ecosystem alive, to cater to people who turn on a setting that literally gives them a giant warning message they have to accept telling them why what they are doing is a bad idea if they don't know what the setting does, and that they are responsible if they choose to turn this on.
Could show you millions of intentionally throttled iphones. Just like having a virus that cant be fixed.
every single platform is like that, though
>without further protections
They have to intentionally change a setting to allow installations from outside the store, where they are greeted with this image. Then they have to encounter this ad, click on it, and then install this mystery application, and then finally grant it device admin permissions.
How many layers of prompts and common sense should be added on top of that?
But the same message is displayed when they try use any non google store apps.
>via a crafted app
>via a crafted app
>via a crafted app
Sorry sweetie, but the App Store is curated and all apps submitted are tested :)
It wouldn’t get through.
Also, that refers to exploits, not actual malware or infected users.
You’re welcome to try again cutie-pie :*
Rightfully so.
So there is another layer of security I forgot about on top of that, truly it is a common sense problem.
Probably the author protecting himself.
But the potential that he can cause phone meltdown is hilarious.
>moving goal posts
This exploit is also not in the play store, it just uses Social Engineering to get you to install something outside of it.
>express.co.uk
>wired.com
>blog.malwarebytes.com
>zdnet.com
>techrepublic.com
>PlayProtect Doesn’t even detect malware
>no one tests the apps before release
>malware in the official Store
WHAT A JOKE
See:You humongous fag
Also no goalposts were moved.
I asked for evidence of millions of infected users. You have failed to provide this. :)
Nice, can you send me a picture using bluetooth?
So it calls the halt and catch fire command?
No but I can send you one over WiFi, it’s faster and more secure :)
but you can't over bluetooth
why does your phone have bluetooth, then?
>what is Xcodeghost
malware has made it through apple's app store too m8
>My phone can't do basic shit so I try to change subject
Thanks for proving my point, have a good nyd
So it's kinda the average stuff
>ad downloads an apk
>idiot user install it
>also gives full perminission
Yep totally OS fault.
For connecting to my headphones, my car, my speakers, controlling smart devices :)
Actually I answered the question and provided a better alternative. No subject was changed.
You andrones really are desperate aren’t you?
I am really sorry for this fag.
But android can do the same wifi send trick.
Sounds like an only iOS feature... How nice.
Five seconds on google:
>computerworld.com
>zdnet.com
It is almost like a walled garden stores are universally shit if you download random shovelware garbage. Windows Store, App Store, Play Store. All of these are loaded with scams, fraud, adware, shovel ware, and sometimes malware.
>headphones
Shit quality and latency
>car
As above + not using CD
>speakers
Fucking normie
>smart devices
Retarded normie
If it's not universal it's shit. Bluetooth file transfer is standard* and widely supported natively, while WiFi transfers rely on proprietary protocols and apps. On Android we can use FTP and HTTP servers, which are standard*.
*If you don't own an iPhone
>calling Goolag shills Loogle shills.
Istalling shit app like these...
They fucking deserve it.
>Shit quality and latency
If you buy poorfag headphones
>As above + not using CD
Lmao cars don’t even come with CD players as standard anymore, what kind of old shitbox do you drive?
>Fucking normie
Not an argument
>Retarded normie
Not an argument
>If it's not universal it's shit.
WiFi is more standard than Bluetooth :)
>Bluetooth file transfer is standard* and widely supported natively
That’s funny, WiFi direct is supported on both iOS and Android. Sounds pretty standard to me.
>On Android we can use FTP and HTTP servers, which are standard
Which 99% of users don’t do. Good job.
Would rather deny installing an apk than have apple virus my phone to a crawl to coerce me to buy a newer one.
Do you really think there are no ftp and ssh clients for iOS
you never made an argument... you only admitted than android can transfer files in more ways than ios... senpai... i worry about your mental state...
3 years? more like next week after release
More features doesn’t mean better, it means more attack vectors, more bugs and a spaghetti codebase ;)
Never heard of feature creep ?
but they're standardised protocols which you can choose not to use at all – no "attack vector"
come get help~~†
>It does not work with Macs either.
It's a security feature, it keeps your phone from being infected with malware.
networkworld.com
gcn.com
zdnet.com
Lmao
>My phone can do anything except autistic ricing
Are you free to use your hardware as you see fit?
Can you block all ads on all applications globally?
Can you prevent all applications from gathering analytical data on you?
Can you make your own program and put it up on your site so others can check it out; without going through the app store process, without having them jailbreak, and without paying $99 a year to apple?
Doesn't a phone have to be rooted in order to grant admin permissions to a random apk? Aren't normies safe if they don't root? Most phone-facebook-instagram faggots don't even know what root means.
> Wi-Fi is more secure than BT
Why you think so?
krackattacks.com
Does Google make your old phone obsolete in terms of security to force you to pay $500-$700 again and again? At least we still have LG and Samsung.
> tfw all normies use Android in my vicinity, at work, my customers use it, etc
> they casually just browse porn, tap on every bullshit
> no one ever had a malware infection whatsoever
Feels fucking comfy and secure. There is no better test than this.
You realise there's like 50 krak attacks for bluetooth, right? And none of them are patched
>Does Google make your old phone obsolete in terms of security to force you to pay $500-$700 again and again? At least we still have LG and Samsung.
All android phones stop receiving OS updates 2 years after release and security updates 3 years after release.
>tfw my iphone will be supported for 5+ years
feels good man
> apple
> feels good in my arsehole, man
pick two
>Maware that melts phone
>YEAH BUT ALL IT DOES IS FUCK WITH THE POWER MANAGEMENT SYSTEM, IT CAN'T INSTALL ITSELF
>Vulnerability is discovered that allows malware to install itself just by rendering a malformed image in a browser
>YEAH BUT IT'S JUST A PROOF OF CONCEPT, IT CAN'T DO ANYTHING BAD
Join "Thing that does bad thing" with "Remote install exploit" and you have WannaCry
