Infracore Blog

Download the Wrong App and Have More Than Pokémon Fever Infect Your Device

Download the Wrong App and Have More Than Pokémon Fever Infect Your Device

There’s a new augmented reality game on the market these days. Perhaps you’ve heard of it - a title called Pokemon Go, which lets you capture virtual monsters that “appear” on your smartphone’s camera. However, hackers have seized this opportunity to infect players’ mobile devices with a backdoor called DroidJack, which uses the mobile app’s immense popularity to its advantage.

As one of Nintendo’s most popular gaming franchises, it shouldn’t come as a surprise that Pokemon Go has experienced such a warm reception amongst both new and old fans of the series. It’s ranked as the #1 most downloaded app on both the Apple Store and Google Play store, and was so wildly successful that Nintendo’s stock surged following its release. With over 75 million users worldwide, it has more users than some of the most popular smartphone apps, including Tinder, Twitter, and Google Maps.

Of course, hackers have to ruin the most popular of things, and they made an attempt to exploit this in the form of a malicious APK (Android application package). The game experienced a soft release, probably in order to ensure that the servers (which many Pokemon Go gamers suspect is simply a closet full of potato electrodes due to frequent crashes) could handle the traffic volume, which left many countries around the world without access to the game at first.

Thus, impatient fans made attempts to download the APK file and “side-load” it onto their devices - a major no-no for any security-minded mobile device user. Basically, you have to allow app installation from unknown sources, which is frowned upon due to some apps containing malware, or unnecessary permissions. Yet, those who wanted to play the game didn’t think for one second that what they were really downloading was a backdoor into their devices.

Due to the exclusivity of the application in the days before its release, many users outside of a select few countries chose to download the APK from an unknown source and just rolled with it. Today, the app is available in many countries, but a modified APK that was released online prior to the official release allowed remote access to the device, and can provide full control over the victim’s phone. In worst-case scenarios, this vulnerability extends to the rest of any network that the device is connected to. Security firm Proofpoint suggests that it’s entirely possible that, should infected devices connect to your network, networked resources can also be put at risk.

Take a look at the DroidJack-infected app’s permission request, and see for yourself just how strange they might look.

https://www.proofpoint.com/sites/default/files/users_content/10/pokemon-fig2.png
https://www.proofpoint.com/sites/default/files/users_content/10/pokemon-fig3.png

This is a valuable lesson to anyone who uses a smartphone: be careful of what apps you download, and ensure that you aren’t giving your apps too many permissions. There’s almost no reason that a game of any kind should be able to access your text messages, make phone calls, modify your contacts, record audio, or anything else of the sort. Exploitation of the APK hasn’t necessarily been observed in the wild, but a development such as this, where hackers use popular apps to spread their infections, sets a dangerous precedent that cannot be ignored.

You should never install apps from unknown sources in the first place, especially on company devices and smartphones. It’s especially important that you only download apps from reputable sources, like the Apple store and the Google Play store.

After all, “Gotta catch ‘em all,” shouldn’t refer to malware infections.

New High Score for Microsoft: More Than 44% of All...
Tip of the Week: Why You Should Rethink Routinely ...
 

Comments 3

Maria Albert on Tuesday, 26 September 2017 23:37

Occasionally I strive to not concentrate such these kinds of articles and neglect reading like these kinds of post. But really after long time I reached a site which provided me tremendous information as I all the time try to get. Now I can move on towards my pending task of searching elite mobile games development company UK. And absolutely would like to comeback on this soon as soon as getting my project.

Occasionally I strive to not concentrate such these kinds of articles and neglect reading like these kinds of post. But really after long time I reached a site which provided me tremendous information as I all the time try to get. Now I can move on towards my pending task of searching elite [url=https://www.ingic.uk/mobile-games/]mobile games development company UK[/url]. And absolutely would like to comeback on this soon as soon as getting my project.
Cameran Moon on Thursday, 22 November 2018 09:11

Infra core was the heart of IT they told us that if we download a wrong application it will infect our cell phone or computer. If you need to get all information on this you can got through https://www.topratedessayservices.com/ this was the official site that have all the issue along with their solution.

Infra core was the heart of IT they told us that if we download a wrong application it will infect our cell phone or computer. If you need to get all information on this you can got through https://www.topratedessayservices.com/ this was the official site that have all the issue along with their solution.
Yvonne Doyle on Sunday, 07 June 2020 19:53

My 16 year old daughter was diagnosed of herpes. ever since then,we have been going from one hospital to the other. she have also tried all sorts of pills but all efforts to get rid of the virus was not successful.i started combing the web to sought for any other means of saving my daughter.just then,i came across a comment on Robinson buckler’s herbal treatment and decided to give it a try.he prepared the herbs and sent it to us.my daughter used it as directed and not up to two weeks,my daughter regained her health..don’t let doubt and ignorance not let you get the cure you need,contact him on his email (((robinsonbuckler @ yahoo. com))) ...................

My 16 year old daughter was diagnosed of herpes. ever since then,we have been going from one hospital to the other. she have also tried all sorts of pills but all efforts to get rid of the virus was not successful.i started combing the web to sought for any other means of saving my daughter.just then,i came across a comment on Robinson buckler’s herbal treatment and decided to give it a try.he prepared the herbs and sent it to us.my daughter used it as directed and not up to two weeks,my daughter regained her health..don’t let doubt and ignorance not let you get the cure you need,contact him on his email (((robinsonbuckler @ yahoo. com))) ...................
Already Registered? Login Here
Guest
Monday, August 03 2020

Captcha Image

Recent Comments

Maya kareem How is Your Business Going to React to a Crisis?
23 July 2020
Top Quality Roofing company Whether you are making a new home or you are starting a home improvement...
Maya kareem How is Your Business Going to React to a Crisis?
23 July 2020
A marriage matrimonial is a union between two people and has many very different components to it ...
TotoDesk Don’t Be Fooled When Scammers Threaten to Spill a Dirty Little Secret
06 July 2020
Thanks for sharing this amazing information http://koreasport.emyspot.com/pages/home-improvement-cre...
Yvonne Doyle Download the Wrong App and Have More Than Pokémon Fever Infect Your Device
07 June 2020
My 16 year old daughter was diagnosed of herpes. ever since then,we have been going from one hospita...
TotoDesk Don’t Be Fooled When Scammers Threaten to Spill a Dirty Little Secret
28 May 2020
great work man, I would like to congratulate you on this effort https://search.yahoo.com/search?p=da...