Android malware spreads via mail tracking SMS spam

Share this article:

Attackers are spreading Android malware to users under the guise of phony mail tracking notifications made to look like DHL Express correspondence, analysts warn.

On Thursday, Carlos Castillo, a mobile malware researcher at McAfee, revealed in a blog post that the brand name of logistics company DHL in Germany had been used to trick victims in the country into installing the malware detected as “Android/SmsHnd.A.”

The threat is delivered via SMS spam designed to look like a DHL tracking notification. In reality, a link in the SMS (shortened through Google's URL service goo.gl) allows attackers to install the malware, the blog post said.

“SmsHnd” leaks sensitive data, such as a victim's phone number, device model, IMEI and IMSI identifiers. The Android malware can also spam text victims' contacts, Castillo said, all while attackers intercept and forward incoming text messages to a remote server in Japan.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Adobe exploit used to spread Dyre credential stealer

Adobe exploit used to spread Dyre credential stealer

Users running vulnerable Adobe software could be in danger of having credentials for Bitcoin websites stolen.

Staples is investigating a potential issue involving credit card data

Staples is investigating a potential issue involving credit ...

The company said it is investigating a potential issue involving credit card data and that customers are not responsible for fraudulent activity on cards if an issue is discovered.

Skills set a priority over legacy prejudices, experts say

Skills set a priority over legacy prejudices, experts ...

Cybersecurity expert Winn Schwartau and Robert Clark, a cyber law attorney at the Army Cyber Institute, discussed issues around hiring in the information security industry.