Thu, May 25, 2017 | updated 09:48 PM IST

Like humans, Malware learns to bypass 'Anti-Fraud Mechanisms' of Google Play Store

Updated: Sep 01, 2016 15:20 IST      
Like humans, Malware learns to bypass 'Anti-Fraud Mechanisms' of Google Play Store

New Delhi [India], Sep 1 (ANI): Kaspersky Lab experts have discovered an Android trojan called Guerilla, which attempts to overcome the Google Play Store anti-fraud protection mechanisms.

Itusesa rogue Google Play client application that behaves as if there was a real human behind it. This fake app allows attackers to conduct shady advertisement campaigns using infected devices to download, install, rate and comment on the mobile applications published on Google Play.

The malware is only capable of abusing Google Play mechanisms from rooted devices.

As a platform for millions of users and software developers, Google Play is an attractive target for cybercriminals. Among other things, cybercriminals use the Google Play Store to conduct so-called Shuabang campaigns, which are widespread in China.

These are fraudulent advertisement activities aimed at promoting some legitimate apps by granting them the highest rates, increasing their download rates and posting positive comments about them on Google Play.

The apps used to conduct these advertisement campaigns usually do not pose any standard threat to the owner of an infected device, such as data or money stealing, but they can still do harm: the ability to download additional apps on the infected device results in extra charges for mobile Internet traffic, and in some cases Shabang apps are capable of covertly installing paid programs, along with free ones; using the bank card attached to the victim's Google Play account as the payment method.

To conduct these campaigns, criminals create multiple fake Google Play accounts or infect user devices with special malware, which covertly performs actions on Google Play, based on the commands received from hackers.

Although Google has strong protection mechanisms, which help detect and block fake users to prevent fraudulent operations, the authors of the Guerilla trojan seem to be trying to overcome them.

The trojan is delivered to the targeted device through Leech rootkit a malware that gives an attacker user privileges over the infected device. These privileges give the attacker unlimited opportunities to manipulate the data on the device.

Among other things it gives them access to the victim's username, passwords, and authentication tokens, which are mandatory for an app to communicate with official Google services, and are inaccessible to ordinary applications on non-rooted devices.

After installation, the Guerilla trojan uses this data to communicate with the Google Play Store as if it was real Google Play app.

The criminals are very cautious: they are careful enough to use the authentication data of a real user, and they also make requests from the fake client application, to Google Play,look exactly like requests that the real app would issue.

Another unusual thing about this trojan is that malware writers have tried to mimic the way an actual user interacts with the store. For instance, before it requests a page where a particular app is hosted, it searches for an app of interest, like a human would, should they need to find an app.

"Guerilla is not the first malicious app that tries to manipulate the Google Play store, but it does it in a pretty sophisticated way, that we haven't seen before. The thinking behind this method is clear: Google can probably easily distinguish requests to Google Play that were made by robots most of the Shuabang malware we know about just automatically sends out requests for the particular page of a particular app," said Security Expert at Kaspersky Lab, Nikita Buchka. (ANI)

New Delhi [India], May 25 (ANI-NewsVoir): Rakesh Kapur, Joint Managing Director, Indian Farmers Fertiliser Cooperative Limited (IFFCO), has been elected as the Chairman of the International Fertilizer Association (IFA) at the recent IFA's Annual Conference held from May 22nd - 24th in Marrakech, Morocco in which 1400 participants were present.

Full Story >>

New Delhi [India], May 25 (ANI-NewsVoir): Unveiled at its Insights 2017 customer conference, Epicor Software Corporation, a global provider of industry-specific enterprise software to promote business growth, has introduced the latest version of Epicor ERP, the global enterprise resource planning solution in use today by thousands of customers in 150 countries worldwide.

Full Story >>

New Delhi [India], May 25 (ANI): Credit rating agency ICRA expects Indian GDP and gross value added (GVA) at basic prices to expand by 7.1 percent and 6.9 percent, respectively, in year-on-year (YoY) terms in Q4 FY2017.

Full Story >>

New Delhi [India], May 25 (ANI): Alibaba Mobile Business Group on Thursday announced appointment of Young Li as Head of International Business Department.

Full Story >>

New Delhi [India], May 25 (ANI): JobsForHer (JFH), an online connecting portal that enables women on a professional break to restart their careers and achieve their full potential, announces the launch of its second roadshow.

Full Story >>

Aye Finance raises USD 8 mn from Blue Orchard

Updated: May 25, 2017 13:09 IST     

New Delhi [India], May 25 (ANI): Non-banking finance company (NBFC) committed to transforming micro and small enterprise financing in India Aye Finance has announced raising USD eight million from Blue Orchard, a leading global impact investment manager.

Full Story >>

New Delhi [India], May 25 (ANI-BusinessWireIndia): International Career and College Counseling (IC3) Conference has announced the second edition of the Annual Conference, that will be held in New Delhi on August 30 and 31 2017 at JW Marriott, Aerocity.

Full Story >>

Chennai, (Tamil Nadu), [India], May 25 (ANI-NewsVoir): MindHour, one of the fastest growing Edu-tech startup based out of Kolkata takes a step ahead and excited to launch its exclusive products in Tamil Nadu to touch the lives of school going children of class 6-10, ICSE and CBSE boards.

Full Story >>

Taxmann recognised as GST Suvidha Provider by Govt. of India

Updated: May 25, 2017 10:40 IST     

New Delhi [India], May 25 (ANI): Leading publisher of tax and corporate laws in India Taxmann.com has announced its recognition as the Goods and Services Tax Suvidha Provider (GSP) by the Government of India.

Full Story >>

New Delhi [India], May 25 (ANI-NewsVoir): Shardul Amarchand Mangaldas announced today that Shuva Mandal, National Practice Head of Corporate, M&A and Private Equity at SAM & Co., will be joining the USD 100b TATA Group as its Group General Counsel. He will be part of N. Chandrasekaran's special team that will assist in transforming the TATA Group.

Full Story >>

New Delhi [India], May 25 (ANI-NewsVoir): Excelity Global, India and Asia Pacific's largest payroll service provider has announced the launch of ezpayroll, a SaaS based payroll solution specifically targeted at SMEs and start-ups in India. Priced from Rs. 9.99, ezpayroll addresses the entire gamut of modern and complex payroll needs of SMEs to ease the administrative burdens associated with payroll processing, government-related compliance and scaling up with growing needs while at the same time providing employees with Tax saving options.

Full Story >>

Aviva Life Insurance Bags 'Product of the Year 2017'

Updated: May 24, 2017 20:42 IST     

New Delhi [India], May 24 (ANI-Businesswire India): Aviva Heart Care has been voted as Product of the Year 2017, for product innovation in the insurance category.

Full Story >>

Union Cabinet scraps FIPB

Updated: May 24, 2017 19:07 IST     

New Delhi [India], May 24(ANI): The Union Cabinet on Monday abolished the 25 year old Foreign Investment Promotion Board (FIPB) that oversees Foreign Direct Investment proposals requiring the government's approval.

Full Story >>

Studying bottom of pyramid banking habits

Updated: May 24, 2017 18:40 IST     

New Delhi [India], May 24 (ANI-Businesswire India): T he Institute of Rural Management Anand (IRMA), along with Grameen Foundation India, recently concluded a study entitled "Scaling Digital Financial Services: Research and Innovation". Aimed at gauging savings and banking habits of the Bottom of the Pyramid (BoP) populace - both rural and urban - the study threw up some interesting revelations.

Full Story >>

New Delhi [India], May 24 (ANI): Income Tax Directorates of Investigation have identified more than 400 benami transactions up to 23 May, 2017.

Full Story >>

BI Worldwide India wins big at the 31st MAA worldwide globes

Updated: May 24, 2017 16:56 IST     

New Delhi [India], May 24 (ANI-Businesswire India): BI WORLDWIDE India, a global leader in delivering technology-enabled engagement and loyalty solutions, has won the Bronze award in the 'Best Business to Business or Trade Marketing Campaign' at the 2016 MAA Worldwide Globes.

Full Story >>

Uttarakhand/Noida, Uttar Pradesh, [India], May 24 (ANI- Business WireIndia): CETPA Infotech, one of the most preferred technical and industrial training companies in the country, offering multi-location training solutions, expert training that is tailored to the requirements of students, corporate and colleges, and virtual training technologies, has announced its updated list of training programmes for this summer.

Full Story >>

New Delhi [India], May 23 (ANI): Largest fertiliser cooperative IFFCO on Tuesday announced its collaboration with Bank of Baroda to launch its co-branded debit card for farmers at a card distribution ceremony organized at their corporate office in New Delhi.

Full Story >>

New Delhi [India], May 23 (ANI): Indian markets are growing at a rapid pace, involving new stakeholders whom until a few years ago did not have any visible and significant presence as far as supply chain space was concerned.

Full Story >>

New Delhi [India], May 23 (ANI-NewsVoir): Adding a new strength to Khadi India's fashion power-house, Aditya Birla Fashion and Retail Ltd. and Khadi and Village Industries Commission, Ministry of MSME, Government of India today announced a strategic collaboration to strengthen the synergies between the two iconic Indian brands.

Full Story >>