Attack on Zygote: a new twist in the evolution of mobile threats
Revision as of 15:28, 12 March 2016 by Eric.freyssinet (talk | contribs)
(Publication) Google search: [1]
| Attack on Zygote: a new twist in the evolution of mobile threats | |
|---|---|
| Botnet | Triada |
| Malware | |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | Android |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2016 / 2016-03-03 |
| Editor/Conference | Kaspersky Securelist |
| Link | https://securelist.com/analysis/publications/74032/attack-on-zygote-a-new-twist-in-the-evolution-of-mobile-threats/ (Archive copy) |
| Author | Nikita Buchka, Mikhail Kuzin |
| Type | |
Abstract
“ Applications that gain root access to a mobile device without the user’s knowledge can provide access to much more advanced and dangerous malware, in particular, to Triada, the most sophisticated mobile Trojans we know. Once Triada is on a device, it penetrates almost all the running processes, and continues to exist in the memory only. In addition, all separately running Trojan processes are hidden from the user and other applications. As a result, it is extremely difficult for both the user and antivirus solutions to detect and remove the Trojan.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2016BFR4827,
editor = {Kaspersky Securelist},
author = {Nikita Buchka, Mikhail Kuzin},
title = {Attack on Zygote: a new twist in the evolution of mobile threats},
date = {03},
month = Mar,
year = {2016},
howpublished = {\url{https://securelist.com/analysis/publications/74032/attack-on-zygote-a-new-twist-in-the-evolution-of-mobile-threats/}},
}