Cybersecurity solutions provider Check Point on Wednesday disclosed that ‘Agent Smith,” a new variant of mobile malware, has quietly infected around twenty-five million android devices globally, together with fifteen million mobile devices in India out of a total of 375 million total Android users in India. Making this as more than 4% of Indian Android phones have been affected by this.
If you are unsure if your phone is affected, we suggest using anti-virus software and scanning your phone. If you have never installed an app from outside of the Play Store, you will probably fine.
Disguised as a Google-related app, the malware exploits noted mechanical man vulnerabilities and mechanically replaces put-in apps with malicious versions. At the same time, not the users’ data or interaction, said Check Point analysis, the threat intelligence arm of Israel-based Check Point.
Primarily, Agent Smith has infected devices in India, which accounts for a few fifteen million infections. this can be for the most part because of a third-party app store known as ‘9Apps’ that’s popular within the country. According to Check Point, attackers hid the malware in exposure utility apps, games, or sex-related apps that “barely operate,” according to Check Point. If a user downloaded one among those apps, Agent Smith would disguise itself as a Google-related app with a reputation like ‘Google Updater,’ then begin replacing the code in different apps.
For instance, with all granted permissions from the originally put-in apps, the Agent Smith malware might probably attack android users’ several banking apps, shopping apps, and different security-related sensitive apps furthermore. With this new malware, the user might maybe not acknowledge whether or not the app that he/she is using is affected or not because it is supposedly hidden below the initial app code.
The first victim’s area unit based mostly in India through different Asian countries like Pakistan and Bangladesh has also been compact. There has also been an evident variety of infected devices within the United Kingdom, Australia, and the USA. Check Point has worked closely with Google, and at the time of business, no malicious apps stay on the Play Store, aforementioned the company.
“Combining advanced threat interference and threat intelligence whereas adopting a ‘hygiene first’ approach to safeguard digital assets is that the best protection against invasive mobile malware attacks like ‘Agent Smith,'” aforementioned the report. Additionally, users ought to be downloading apps from sure app stores to mitigate the danger of infection as third-party app stores typically lack the protection measures needed to block adware loaded apps solely.