The Indian Computer Emergency Response Team (CERT-In) on 26 March 2014 detected a Smartphone Virus called Dendroid. It directed the users of Android smartphone to be beware of Dendroid as it can compromise the data stored on the users phone.
Virus once activated could change the command and control server of a user's personal Android phone and intercept private SMSes coming in or going out.
Dendroid is the virus of the deadly Trojan family. It is being used to create trojanised applications that infect Android-based smartphones. Dendroid is a HTTP RAT having a sophisticated PHP administration panel and an application APK binder package.
To tackle the virus dendroid CERT-In has issued some guidelines for the users. These are:
• Do not download and install applications from untrusted sources, install applications downloaded from reputed application market only.
• Check for the permissions required by an application before installing. Run a full system scan on device with mobile security solution or mobile antivirus solution
• Users are advised to use device encryption or encrypting external SD card feature available with most of the Android OS.
• Users are also advised to keep an eye on data usage (application-wise usage also) and unusual increase in mobile bills and keep an eye on device battery usage (application-wise usage also).
• Avoid using unsecured and unknown Wi-Fi networks. There may be rogue Wi-Fi access points at public places used for distributing malicious applications and make a practice of taking regular backup of Android device.
When: 26 March 2014