Thursday, 1 May, 2025

Subscribe to Newsletter

HOME
  NEWS
  Knowledge Center
 
News

Fake Instagram App Infects Android Devices with Malware

Published Apr 19, 2012

IT security and data protection company Sophos is warning Android users about malware being distributed disguised as the popular photo-sharing app Instagram. Cybercriminals have created fake versions of the Instagram Android app, designed to earn money from unsuspecting users.

Cybercriminals have played on the popularity of the Instagram app - which has millions of users around the world, and was recently acquired by Facebook for a staggering $1 billion.

If Android owners download the app from unapproved sources, rather than official sites such as the official Google Play Android marketplace, they run the risk of infecting their smartphone. Once installed, the app will send background SMS messages to premium rate services earning its creators revenue. Sophos products detect the malware, which has been distributed on a Russian website purporting to be an official Instagram site, as Andr/Boxer-F.

"Android malware is becoming a bigger and bigger problem," said Graham Cluley, senior technology consultant at Sophos. "Just last week, we saw a bogus edition of the Angry Birds Space game and it's quite likely that whoever is behind this latest malware are also using the names and images of other popular smartphone apps as bait. Infected Androids are now effectively part of a botnet, under the control of malicious hackers. Android users need to be extremely careful when downloading applications from sites, especially when they're not official Android markets."

Curiously, the malware contains a random number of identical photos of a man.

"With help from internet users we were able to identify that the image comes from a Moscow wedding photograph, where he was dressed a lot more casually than other guests," said Cluley. "The man's photo became widespread on Russian internet forums, making the man something of a celebrity. There's no reason to believe, however, that he has anything to do with the Android malware attack."

More information, including images, can be found on the Sophos Naked Security website: http://nakedsecurity.sophos.com/2012/04/18/fake-instagram-app-android-malwar/

Graham Cluley is available for comment at +44 (0)1235 544114 or +44(0)7990 552181

Follow Graham Cluley on Twitter: http://twitter.com/gcluley



Rate This:

Posted by VMD - [Virtual Marketing Department]


Poll
What is your favourite search engine?
Google
Yahoo
Bing

Most Viewed
  Riverbed Launches Industry’s Most Complete Digital Experience Management Solution

  Credence Security to Address Growing Market for GRC Solutions in Middle East Through Partnership with Rsam

  New Mimecast Archive Cloud Capability Streamlines GDPR Management for Email

  Planning and Scheduling Software–Helping Manufacturers Keep Their Customers Happy

  Farsight Security and Infoblox Provide Zero-Hour Protection Against Cyberattacks Due to New Domains

  Fujitsu Launches High-Security Biometric Authentication Solution for Active Directory IT Environments

  Rackspace Wins 2017 Red Hat Innovator of the Year Award

  ServiceNow Survey Shows 2018 as the Year of Automation for Routine Enterprise Work

  4 Tech Hacks to Faster Customer Onboarding

  New Mimecast Report Detects 400% Increase in Impersonation Attacks