New Delhi: Computer and internet security agencies in the country have detected a notorious ‘Android’ application which illegally enters smartphones and compromises their security by sending SMSes to unknown contacts.
The malware application has been identified as “Superclean or DroidCleaner” by India’s premier computer security agency—Computer Emergency Response Team of India (CERT-In).
“It has been observed that an Android malware, capable of infecting the connected (from smartphone) personal computers, is available in the Android markets. The malware turned out to be a good reputation app (application) disguised in the name of “Superclean/DroidCleaner” and is capable of infecting the USB connected personal computer,” the agency said in its advisory to Android technology based smartphone users in the country.
Once successfully installed, the agency said, “the malware calls home to remote domains and downloads executable files(svchosts.exe, folder.ico, Autorun.inf) on the root of the secure digital (SD) card which are capable of spying onto user personal computer.
“The app in general seeks the permissions to access and change the Wi-fi state, SMS manipulations, reading the contact details, uploading the SD card contents and contacting remote servers as seen from the AndroidManifest file,” the advisory cautioned.
The security sleuths have asked smartphone users to take note if their phone starts sending out SMSes to unknown people or starts calling unidentified numbers not present in the directory of the phone owner. “The app is enabled by the main launcher and subsequently restarts the running apps in the smartphone,” it said.