Skip to content

Virus found in fake Android version of ‘Angry Birds: Space’ (Bilingual en-in)

14 April 2012

Security analysts have found fake versions of “Angry Birds: Space” that contain potentially harmful malware.

 Android users beware. Download the wrong version of your favorite pig-killing game and the birds won’t be the only ones who are angry.

Security analysts have found fake versions of "Angry Birds: Space" that contain potentially harmful malware.

Angry Bird Space Wallpaper

“Angry Birds: Space,” the latest installment of the insanely popular mobile game, is being used to mask some fairly nasty malware, according to security experts and Rovio, the maker of “Angry Birds.”

Graham Cluley, an analyst with Web security firm Sophos, wrote on the company’s blog Thursday that they had discovered fake versions of the game on unofficial app stores. The fake games contain a “Trojan horse” virus.

A post on Rovio’s blog on Thursday also warned fans to watch out for fake versions of the game, urging them to download the new title from their official store.

According to Sophos, the Trojan horse, which it identified in a file called Andr/KongFu-L, appears to be a fully functional version of the game, but instead installs a virus on the user’s smartphone or tablet.

From there, the code tries to install more malware that essentially puts the phone or tablet computer under the control of the cybercriminals behind it, Cluley wrote.

“It feels like we have to keep reminding Android users to be on their guard against malware risks, and to be very careful, especially when downloading applications from unofficial Android markets,” he said.

Unlike Apple, which screens all its apps and requires iPhone and iPad owners to download software from its official App Store, Google maintains less control over what people can install on devices that run its Android operating system. The company allows Android owners to download programs from official and unofficial sources.

Security experts say Android device owners should use the official Android Market if they want to avoid downloading fake apps and potentially harmful programs, although there have been instances of malicious software showing up in that official venue, too.

From Harry Potter to Ana Kournikova, it’s not unusual for malicious hackers to use popular topics, often from the entertainment and celebrity world, to lure potential victims.

“Angry Birds: Space” was released March 22 for the iPhone, iPad and Android devices, as well as Macs and PCs. It soared to a mind-blowing 10 million downloads in just three days, three times faster than the franchise’s last outing, “Angry Birds: Rio.”

Released in 2009, “Angry Birds” is the No.1 paid mobile app of all time, crossing 300 million downloads, across multiple platforms, last year.

Based in Finland, Rovio parlayed the game’s success into a virtual empire, offering everything from comic books and animated videos to plush dolls and cookbooks based on the game.

Other Source

Ketenaran Angry Birds tampaknya juga sudah mulai dimanfaatkan para peretas usil. Mereka mebuat game tiruan yang sebenarnya berisi virus menyebalkan.

Virus tersebut bernama Andr/KongFu-L yang ditemukan oleh vendor keamanan Sophos

Virus yang ditemukan itu tergolong berbahaya. Program jahat ini dirancang untuk bisa mendapatkan akses penuh pada setiap smartphone yang dijangkitnya.

Secara otomatis virus tersebut akan berkomunikasi dengan pembuatnya dan melakukan berbagai aktivitas seperti mengirim url, mendownload virus lain, dan semua itu dilakukan tanpa diketahui sang pemilik ponsel.

Sejauh ini virus tersebut ditemukan pada Angry Birds Space untuk Android yang berada di luar Google Play, jadi pengguna yang mengunduhnya melalui ‘jalur resmi’ tak perlu khawatir.

And many source has reported about this virus

Before you hit the button to download your favourite Angry Birds Space app on your Android, do ensure that it is not the fake game app which has a Trojan malware. According to web security firm Sophos, “The malicious download is a functional version of Angry Birds Space that gains access to your phone using a Trojan horse called Andr/KongFu-L. The cybercriminals behind the fake game can direct your phone to any website, once you’ve installed their Trojan,” reports Mashable.

Rovio has warned on its blogpost, “As you get ready to pop pigs in zero gravity, watch out for fake versions of Angry Birds Space, and make sure to download safe by getting the official game from Rovio.”

“The phony app appears to be a fully-functional version of the popular smartphone game,” except that it installs malicious software on Android that takes over one’s phone,” reports Sophos.

Angry Birds Space has been downloaded 3 million times in the three days following its release on March 22.

Banyak sekali sumber yang penulis ambil yang berkaitan dengan ini

There’s a fake version of Angry Birds Space in unofficial Android app stores, containing infectious malware. Rovio warns users not to be fooled.

“As you get ready to pop pigs in zero gravity, watch out for fake versions of Angry Birds Space, and make sure to download safe by getting the official game from Rovio,” the mobile game maker wrote in a blog post.

The malicious download is a functional version of Angry Birds Space that gains access to your phone using a Trojan horse called Andr/KongFu-L, according to web security firmSophos. The cybercriminals behind the fake game can direct your phone to any website, once you’ve installed their Trojan.

Be sure to only download the official version of the game to avoid infecting your phone. The official version ofAngry Birds Space in Google Play is not affected.

Angry Birds Space, the latest edition of the popular mobile gaming saga, was released March 22 for Android, iOS, Macs and PCs. It was downloaded 10 million times in just three days. The original version of Angry Birdsis the most popular download of all time, having reached the 500 million milestone in November 2011.

Mana lagi pun tetap sama

Android malware authors have seized an opportunity to infect unsuspecting smartphone users with the launch of the latest addition to the immensely popular “Angry Birds” series of games.

SophosLabs recently encountered malware-infected editions of the “Angry Birds Space” game which have been placed in unofficial Android app stores. Please note: The version of “Angry Birds Space” in the official Android market (recently renamed “Google Play”) is *not* affected.

The Trojan horse, which Sophos detects as Andr/KongFu-L, appears to be a fully-functional version of the popular smartphone game, but uses the GingerBreak exploit to gain root access to the device, and install malicious code.

The Trojan communicates with a remote website in an attempt to download and install further malware onto the compromised Android smartphone.

Screenshot (kalau ada tulisan market, author minta maaf sebesar-besarnya!!!!! Karena seharusnya adalah play store/google play/google play store)

Interestingly, the malware hides its payload – in the form of two malicious ELF files – at the end of a JPG image file.

Info about Virus Andr/KongFu-L's source code

With the malware in place, cybercriminals can now send compromised Android devices instructions to download further code or push URLs to be displayed in the smartphone’s browser.

Effectively, your Android phone is now part of a botnet, under the control of malicious hackers.

It feels like we have to keep reminding Android users to be on their guard against malware risks, and to be very careful – especially when downloading applications from unofficial Android markets (play store/google play/google play store)

Source: 1 | 2 | 3 | 4 | 5 (di bawah) | {Perbarui Sumber}

Informasi tentang Andr/KongFu-L

Category: Viruses and Spyware
Type: Trojan
Protection available since 10 Apr 2012 20:06:11 (UTC)
Last Updated 12 Apr 2012 13:17:04 (UTC)
Prevalence:
|||||
– ||||| – ||||| – ||||| – |||||

1       –    2    –   3    –    4    –    5

No comments yet

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: