Malware-filled Pokemon Go app out in the wild

by Douglas Stevenson Julio 11, 2016, 9:19
Malware-filled Pokemon Go app out in the wild

Unfortunately, Nintendo didn't release the game in all countries at once but has opted for a limited release schedule.

First of all, Pokemon Go app once went bad with server issues, which leads to crashes or app frozen.

Pokemon GO is the first Pokemon game recognized by Nintendo for iOS and Android devices.

Being an Android user it is not new for people to try and experiment outside of the Google Play store, but that doesn't come free of any vices and that also includes games.

Internet security firm ProofPoint reported on an infected version of Pokemon Go for Android devices on Saturday, July 9.

While Proofpoint says that Android owners can avoid the infection by only accessing the game through a trusted service like the Play store, those who are anxious they might have a malicious copy can check by looking at the permissions granted to the Pokemon GO game itself.

AP IMAGE
AP IMAGE

Hackers routinely build fake versions of popular games to infect phones. Various mobile and gaming news sites have published various tutorials in which they showed users how to download and install the game even if it wasn't available in their countries yet.

Insiders detected a Pokemon Go APK that has the DroidJack remote access kit on VirusTotal, a repository for malware and compromised apps.

"Cybercriminals can take advantage of the popularity of applications like Pokémon Go to trick users into installing malware on their devices", Proofpoint's blog post reads.

To install it, a user needs to "side-load" the malicious app by disabling an Android security setting that normally prevents the installation of unverified third-party apps from "unknown sources". The malicious APK that we analyzed has a SHA256 hash of 15db22fd7d961f4d4bd96052024d353b3ff4bd135835d2644d94d74c925af3c4. However, seriously, Pokemon Go app has been hijacked.

As you can surely tell, a lot of those required permissions have nothing to do with running an augmented reality game; that's your red flag.


TOP News

Francotirador de Dallas era veterano del Ejército

Supreme Court refuses to limit abortion

Sale Cristiano Ronaldo lesionado de la final

Dallas woman who was shot at protest shielded 4 sons

Liverpool city centre Black Lives Matter protest postponed