Lookout Mobile Security has uncovered a new mobile malware Trojan that’s attacking Android phones, which it says is the nastiest to date.
The new Android Trojan called Geinimi has appeared in China and has been designed with the specific intent of taking large amounts of personal data from your Android phone and sending it back to the creators via remote servers.
Lookout Security explained that the new Trojan Geinimi displays botnet-like qualities and is the most sophisticated wireless malware it has seen to date. Geinimi attempts to connect to remote servers every five minutes using one of ten embedded domain names to transmit collected information. But at the moment the only infected programs are on Chinese app stores.
How Geinimi Operates
Geinimi is effectively being ‘grafted’ onto repackaged versions of legitimate applications, primarily games, and distributed in third-party Chinese Android app markets. Once installed, the Trojan can collect a wide range of personal data, including your location, unique identifiers for your device, and even your contact list. This data is then sent back to the malware’s creators, who can use it for various malicious purposes, such as identity theft or selling the information to other cybercriminals.
The Trojan’s ability to connect to remote servers every five minutes makes it particularly dangerous. This frequent communication allows the malware to update itself, download additional malicious payloads, or even receive commands from its creators. This level of control and adaptability is what makes Geinimi stand out from other mobile malware.
Preventing Infection
To protect yourself from Geinimi and other similar threats, it’s crucial to follow some best practices for mobile security. First and foremost, avoid downloading apps from third-party app stores, especially those based in regions known for high levels of malware activity, such as China. Stick to official app stores like Google Play, which have more stringent security measures in place.
Additionally, always check the permissions requested by an app before installing it. If an app asks for more permissions than it reasonably needs to function, it could be a red flag. For example, a simple game should not need access to your contact list or location data.
Using a reputable mobile security app can also provide an extra layer of protection. These apps can scan your device for malware, block malicious websites, and offer real-time protection against new threats. Lookout Mobile Security, for instance, offers a comprehensive suite of features designed to keep your device safe from malware like Geinimi.
Finally, keep your device’s operating system and all installed apps up to date. Software updates often include security patches that can protect your device from known vulnerabilities exploited by malware.
In conclusion, while Geinimi represents a significant threat to Android users, following these best practices can help you stay safe. By being vigilant about where you download apps, scrutinizing app permissions, using mobile security software, and keeping your device updated, you can significantly reduce your risk of infection.
Stay informed about the latest security threats and take proactive steps to protect your personal data. The landscape of mobile security is constantly evolving, and staying one step ahead of cybercriminals is essential for safeguarding your digital life.
Via
Latest Geeky Gadgets Deals
Disclosure: Some of our articles include affiliate links. If you buy something through one of these links, Geeky Gadgets may earn an affiliate commission. Learn about our Disclosure Policy.