Pinterest Stumbleupon Whatsapp

A new type of malware is doing the rounds, and it has already infected 1 million Android devices. Dubbed Gooligan, this malware roots Android, giving the hackers full control of people’s devices. Anyone with an Android running Jelly Bean, KitKat, or Lollipop is currently at risk.

As discovered by security firm Check Point Software Technologies, Gooligan first emerged in August. Since then it has wormed its way onto 1 million Android devices, currently infecting around 13,000 devices every day.

Gooligan is present in at least 86 Android apps available from third-party marketplaces. It can also find its way onto your phone or tablet if you blindly click on a seemingly innocent malicious link. Once installed, Gooligan will wreak havoc by rooting your device Take Control: Android Rooting Guide Take Control: Android Rooting Guide As of the writing of this guide, approximately 80% of the world's population owns their own cellphone. Out of those, 1.08 billion are smartphones. Read More .

Once your device has been rooted, Gooligan will download and install software capable of compromising the authentication tokens your device uses to access Google services. Those at risk include Gmail, Google Drive, Google Photos, Google Docs, and more.

Gooligan Boosts Google Play Ratings

The authors of Gooligan could conceivably use it in a number of different ways, including accessing your private data. However, it appears they’re actually using Gooligan to game Google Play, downloading apps and leaving 5-star reviews in order to boost the ratings of those apps. The reason? Money, of course, as this process generates serious revenue.

Google is already on the case, with Android security engineer Adrian Ludwig explaining:

“We’ve taken many actions to protect our users and improve the security of the Android ecosystem overall. These include: revoking affected users’ Google Account tokens, providing them with clear instructions to sign back in securely, removing apps related to this issue from affected devices, deploying enduring Verify Apps improvements to protect users from these apps in the future and collaborating with ISPs to eliminate this malware altogether.”

If you own an Android device running on anything older than Android 6.0 (Marshmallow) Android 6.0 Marshmallow: What It Is and When You'll Get It Android 6.0 Marshmallow: What It Is and When You'll Get It Android Marshmallow is here -- but why should you care? Read More you should do two things: 1. Use this Check Point tool to see whether your Google account has been compromised, and 2. View the list of fake apps infected by Gooligan so you know what to avoid.

And, as always, you should use common sense when installing apps or clicking on blind links.

Have you been affected by Gooligan? Is this the first Android malware you have encountered? Does Google need to do more to protect Android users? Is Android’s level of fragmentation harming security? Please let us know in the comments below!

Image Credit: Jean-Etienne Minh-Duy Poirrier via Flickr

  1. Alina Jones
    December 3, 2016 at 10:10 am

    thanks Dave Parrack for this useful post. how can store my old data in such a situation!

    thanks,

  2. Aayesha Modi
    December 2, 2016 at 10:32 am

    Thanks Dave Parrack for sharing this post!
    It is always refreshing to read here, and how can I safe my mobile from this malware infaction?
    Look forward to more updates from your end.

    Thanks,

  3. Hildy J
    December 1, 2016 at 5:44 pm

    It's infecting 13,000 obsolete phones owned by gullible people each day. Meanwhile, about 1,500,000 Android phones which are immune to the attack are sold each day. Next we'll learn that giving your bank account information to someone who promises to transfer millions into it is a bad idea.

    • Don Key
      December 1, 2016 at 11:51 pm

      If a phone works, it ain't obsolete! Take you consumer consumption arrogance elsewhere.

      1,500,000 Android phones MAY be immune to the attack... for now. Until the scumbags making and pushing this stuff find a workaround.

      Never thought I would say that Apple is starting to look attractive, from a security point of view. But it truly is... and quite frankly I hate the Apple way of doing stuff. OK, totally despise it is probably more accurate.

Leave a Reply

Your email address will not be published. Required fields are marked *