Fake Google Chrome Installer Steals Banking Details
New polymorphic Android malware, meanwhile, disguises itself as a free virus scanner.
By Mathew J. Schwartz InformationWeekMay 17, 2012 01:52 PM
Beware fake Chrome installers for Windows.... moreFake Google Chrome Installer Steals Banking Details
New polymorphic Android malware, meanwhile, disguises itself as a free virus scanner.
By Mathew J. Schwartz InformationWeekMay 17, 2012 01:52 PM
Beware fake Chrome installers for Windows.
A file named "ChromeSetup.exe" is being offered for download on various websites, and the link to the file appears to be legitimately hosted on Facebook and Google domains. In reality, the software won't install Google's Chrome browser, but an information-stealing Trojan application known as Banker, according to antivirus vendor Trend Micro.
Once the malware--which appears to be targeting Latin American users, especially in Brazil and Peru--is executed, it relays the IP address and operating system version to one of two command-and-control (C&C) servers, then downloads a configuration file. After that, whenever a user of the infected PC visits one of a number of banking websites, the malware intercepts the HTTP request, redirects the user to a... less
Source: http://pastebin.com/wamYsqTV
The ZTE Score M is an Android 2.3.4 (Gingerbread) phone available in the United States on MetroPCS, made by Chinese telecom ZTE Corporation.
There is a setuid-root application at /system/bin/sync_agent that serves no function besides providing a root shell backdoor on the device. Just give the magic, hard-coded password to get a root shell:... moreSource: http://pastebin.com/wamYsqTV
The ZTE Score M is an Android 2.3.4 (Gingerbread) phone available in the United States on MetroPCS, made by Chinese telecom ZTE Corporation.
There is a setuid-root application at /system/bin/sync_agent that serves no function besides providing a root shell backdoor on the device. Just give the magic, hard-coded password to get a root shell:
$ sync_agent ztex1609523
# id
uid=0(root) gid=0(root)
