The recently discovered Android trojan “Triada,” known for granting superuser privileges to other downloaded Trojans, is now embedding itself into at least four browsers in order to intercept URL requests and send users instead to malicious mobile websites, according to Kaspersky Lab.
A Securelist blog post published earlier this week explains that as of mid-March, Kaspersky began noticing that Triada was using Linux debugging tools to embed its Dynamic Link Library into the processes of the standard Android browser, as well as the 360 Secure, Cheetah and Oupeng browsers. Doing so allows the malware to redirect a URL request, in the style of a Man-in-the-Middle attack.
Source: http://www.scmagazine.com/triada-trojan-now-redirecting-android-users-to-fake-malicious-urls/article/502288/
Submitted by: Arnfried Walbrecht
Comments are closed.