Poisoned QR Codes Spreading Malware To Android Phones
Poisoned QR Codes Spreading Malware To Android Phones
Posted 10/03/2011 at 10:34am
| by Brad Chacos
4
Comments
Print
It sucks, but malicious apps are beginning to be a common occurrence on Android phones. Studies have shown that malware-ridden Android apps have been on a meteoric rise throughout the year. A new report says the havoc is spreading; many of us know better than to click on a link from an untrusted source, but scammers have started working around that by offering scannable QR codes that link directly to malware.
You don’t have to worry so much about the QR codes you find in magazines and television commercials; the malevolent codes are located squarely on the Internet. When people are looking for new apps for their phones, they often use their desktop computers to search the Web for what they’re looking for. Rather than forcing users to hen-peck the URL into their smartphone’s browser, many sites now include a QR code linking directly to the app to make things easier all around.
Scammers have begun redirecting QR codes away from the given URL and pointing them towards malware, Kapersky reports. The security firm says it has already found the poisoned codes in the wild; the variants it’s found install programs that send text messages to premium numbers at rates of up to $6 a pop. Once again, be careful who you trust, what you click, and apparently, which QR codes you snap on the Web, folks.
More like this
4
Comments
Comments are closed on this article
Zoandar
October 03, 2011 at 7:04pm
A QR code is really no different than a URL from a completely unknown source. Common sense tells us not to click those. So we'll have to apply the same common sense and simply not scan QR codes unless we are SURE where they lead.
HiGHRoLLeR038
October 03, 2011 at 12:52pm
I always knew this would start happening. When you look at these things, they seem harmless, but they can have any kind of URL coded in and you cannot see what it is until you scan it. When scanning these codes, the phone app should let you decide weather or not to proceed to the website. Have the URL displayed first so you can see it and decide what to do before it takes you to the site.
Caboose
October 03, 2011 at 12:40pm
I think it might be time to lock down the Android platform a bit. Maybe take away the ability to install unsigned apps (unless you're rooted of course). This should also clean up the market a bit as well.
Connect with MaximumPC
Featured Content
The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...
This month's issue
Feature
Build a PC On Any Budget
Feature
Cloud Services Showdown
How-To
Encrypt Your External Drive
Build It
Upgrade an X58 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy2 days 33 min ago
- maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj2 days 42 min ago
- maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 22 hours ago
