Researchers at Computer Associates Security have identified new a strain of malware that secretly records phone conversations on Android phones. The new threat to smartphones that run Google’s Android operating system is an advance on earlier trojans examined by the security firm that logs incoming and outgoing call details in a text file, according to Dinesh Venkatesan, a researcher at CA Security.
The researcher said that the new Android malware “walks an additional mile” as it is capable of recording phone conversations the infected device is making.
“This Trojan is more advanced as it records the conversation itself in ‘amr’ format,” the researcher wrote in a blog post. “Also it conducts many other malicious activities that we have seen in many of the earlier malware incidents targeted for the Android platform.”
CA Security demonstrated how the malware is disguised as a normal app for download. Once an unsuspecting user installs the app, it drops a configuration file that contains information about the parameters and the remote server. Making a phone call then triggers the payload, which records and saves the audio file in a folder named “callrecord” within another folder called “shangzhou” in the SD card’s directory structure.
The latest discovery joins a number of malwares that threaten Android users. Last month, security researchers discovered malware, including a DroidDream Trojan variant, that plagued apps that was removed from the Android Market last year. According to security firms, these malware can operate on their own, which means that users don’t need to launch the virus-infested apps for it to infect their devices.
via: Digital Trends