Check Point: Agent Smith is a new adware on the wild: the mobile malware has already infected around 25 million devices
It’s dubbed “Agent Smith” and it’s a mobile malware that has already infected around 25 million devices. It has been discovered by Check Point cyber security experts. Disguised as a Google related application, the core part of the malicious code exploits various known Android vulnerabilities and automatically replaces installed apps on the device with malicious versions without the user’s interaction. According to the company, so far, the primary victims are based in India though other Asian countries such as Pakistan and Bangladesh are also impacted, as are even a noticeable number of devices in the UK, Australia and the US. It uses its broad access to the device’s resources to show fraudulent ads for financial gain. This activity resembles previous cybercrime campaigns such as Gooligan, Hummingbad and CopyCat malware and can infect all smartphones updated beyond even Android v.7.
The cyber security experts: Cybercrime could easily use the malicious code for far more intrusive and harmful purposes such as banking credential theft and eavesdropping
The cyber security experts launched the warning on this mobile malware. Since now, “Agent Smith” is being used to for financial gain through the use of malicious advertisements. However, it could easily be used for far more intrusive and harmful purposes such as banking credential theft and eavesdropping. Indeed, due to its ability to hide its icon from the launcher and impersonate existing user-trusted popular apps, there are endless possibilities for this sort of cybercrime malicious code to harm a user’s device. Within the mobile threat landscape the best protection against invasive mobile malware attacks like “Agent Smith” is to leverage advanced threat prevention technologies, powered by advanced threat intelligence, combined with a ‘hygiene first’ approach.