USB Autorun Attack

May 17th, 2013 by admin Leave a reply »

New malware emerged recently attacking Android and Windows platforms.
Main capabilities: Steals information and downloads files
File size: 330,984 bytes
File type: APK

This malware comes up being a system solution that assists with accelerating your system. Right after setup, it displays an image launcher. After the harmful application is launched, the user will discover its home screen. The application offers a number of different “clean options” for the user to select, however they really practically do nothing at all other than display an activity bar.

Concurrently, the malware begins a service that is harmful throughout the background.
It signs up a location listener to gather as well as upload location details via HTTP to a server.
It additionally gets instructions from a C&C server.
The protocol utilized by the malware to communicate to the C&C server is a unique one.

The malware executes a number of functionalities, for instance:
•Send and Delete SMS messages
•Steal contact information
•Track location via GPS device
•Make phone calls
•Execute commands

Why this malware is special is the control usb-autorun-attack. Following this control the malware will download a few files from its server and also save them within side the SD card. Among the files saved is a traditional Windows autorun malware thus when the user chooses the USB setting on the cellular device and attaches with a Windows platform, the autorun malware will operate instantly. This auto-run is made to record voice and report to the server. The application is a major threat to the security of the data stored on the computer that has it installed.

Get your personal as well as office laptops encrypted by Alertsec

Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.

Enhanced by Zemanta

Leave a Reply