![]() Mozilla says 80 percent of Google Play's app safety labels are inaccurate.Google: If your Android app can create accounts, it better be easy to delete them, too."One of the sellers offers obfuscation of 50 files for $440, while the cost of processing only one file by the same provider is about $30," Team Kaspersky says.Īdditionally, to increase the number of downloads to a malicious app, thus making it more attractive to other mobile users, attackers can buy installs for 10 cents to $1 apiece. Some other illicit services offered for sale on these forums include virtual private servers ($300), which allow attackers to redirect traffic or control infected devices, and web injectors ($25 to $80) that look out for victims' visiting selected websites on their infected devices and replacing those pages with malicious ones that steal login info or similar.Ĭriminals can pay for obfuscation of their malware, and they may even get a better price if they buy a package deal. However, these have lower successful install rates compared to loaders, so even in the criminal underground you get what you pay for. Would-be crims who don't want to pay thousands for a loader can pay substantially less - between $50 and $100 - for a binding service, which hides a malicious APK file in a legitimate application. ![]() ![]() ![]() "If a suspicious environment is detected, the loader may stop its operations, or notify the cybercriminal that it has likely been discovered by security investigators." "Cybercriminals may also supplement the trojanized app with functionality for detecting a debugger or sandbox environment," the researchers added.
0 Comments
Leave a Reply. |