Versatile Android Malware Can Cause Physical Damage to Phones

Versatile Android Malware Can Cause Physical Damage to Phones

Cybersecurity firm Kaspersky Labs reported Monday on a new “jack of all trades” Android malware threat they’ve dubbed Loapi.

Cybersecurity firm Kaspersky Labs reported Monday on a new “jack of all trades” Android malware threat they’ve dubbed Loapi. According to Kaspersky Labs’ report, the malware is capable of multiple kinds of attacks and its workload can even physically damage a phone after a few days of being installed.

Loapi malware is installed via malicious apps, some disguised as antivirus solutions, that are available for download outside of the Google Play app store. After installation, the malware demands administrator rights, spamming the screen with notifications in a bid to get desperate users to give in and tap OK.

If users try to revoke device manager permissions, the malicious app locks the screen and closes the settings window. If users try to download actual protective apps, such as a real anti-virus app, Loapi declares them malware and forces the user to OK their removal.

The Loapi malware, once installed, can carry out many kinds of attacks. It aggressively displays advertisements on a user’s phone as well as using it as part of an advertising click fraud scheme. It can also use the phone as part of a DDoS attack.

Another module of the malware can sign up users to paid subscription services. Because Loapi also has SMS messaging functionality, it can confirm by text any subscriptions that require confirmation as part of sign-up, and all messages (outgoing and incoming) are immediately deleted. According to Kaspersky, the advertising and subscription sign-up features made 28,000 different requests in a 24-hour period.

Kaspersky discovered that the Loapi malware is set up with the ability to adapt to any new function its creators might want, such as ransomware, spyware or a banking Trojan.

In addition to these abilities, Loapi also uses smartphones as cryptocurrency mining modules, specifically to mine Monero tokens.  Cryptocurrency mining is such a processor-intensive process that 48 hours after Kaspersky’s test phone was infected, the battery overheated, expanded and burst out of the phone case.

To avoid installing malware on your Android device, Kaspersky recommends installing apps only from official stores, disabling the installation of apps from unknown sources, only installing apps that you really need and installing and regularly using proven anti-virus protection for your Android device.

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Featured

Featured Cybersecurity

Webinars

New Products

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation. 3

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3