Support NeoGAF

[The Faceless Master]

A new piece of Android malware has been discovered by security researchers at Kaspersky Labs. That by itself wouldn't be big news, but this Trojan does things no other malicious app has done. It exploits multiple vulnerabilities, blocks uninstall attempts, attempts to gain root access, and can execute a host of remote commands. Backdoor.AndroidOS.Obad.a, as it has been dubbed, is the most sophisticated piece of Android malware ever seen.

There are two previously unknown Android vulnerabilities exploited by Obad. The malware installer contains a modified AndroidManifest.xml file, which is a part of every Android apps. The first big vulnerability is in the processing of this file by the system – it shouldn't be processed at all, but the app installs just fine. Once Obad is on a device it uses a second Android exploit to gain extended Administrator access. The Android Administrator feature allows apps to read notifications and perform other advanced operations (a lot of security apps use it). When this command is executed, Obad can not be unsinstalled and it doesn't even show up in the list of Administrator-approved apps.

http://www.androidpolice.com/2013/0...s-discover-most-advanced-android-malware-yet/

oh wow, two hot new zero day exploits! das craaaziiii!!!!

 

[ComputerMKII]

I first read that as 'Most advanced Metroid malware'. I wasn't sure what that meant.

 

[Yofaycesux]

Its happening.

 

[Nickiepoo]

But it's not self-aware right?

 

[Cereal KiIIer]

Kaspersky Researchers Create Most Advanced Android Malware Yet

FTFY

 

[Fare Godmace]

Thanks, Obad.a.

 

[Leatherface]

mobile exploits are the new hotness. hide your data's! hide your kids!