Alert: Android Mobile Users, StrandHogg Malware Can Steal All Your Sensitive Information
The Indian Computer Emergency Response Team (CERT-In) has issued a severe warning about a malware named as StrandHogg that can steal all sensitive information from Android users.
 
"When users tap on a legitimate app, a malicious code is triggered in place of the original one. The attacker can then access sensitive information and fetch user's login credentials and gain access to security-sensitive apps," CERT-In says in a release.
 
StrandHogg, the vulnerability in Android operating system, allows a malicious application tomasquerade as any other app. The vulnerability exploits an Android control setting called 'taskAffinity', which allows an application to assume any identity in the multitasking system. 
 
When infected with StrandHogg malware, users could find some anomalies on their mobile devices.
 
This include,
 
  • An app or service that you are already logged into is asking for a login.
  • Permission popups that do not contain an app name.
  • Permissions asked from an app that should not require or need the specific permissions it asks for.
  • Typos and mistakes in the user interface.
  • Buttons and links in the user interface that do nothing when clicked on.
  • Back button does not work as expected.
 
If any malicious behaviour or activity is observed, CERT-In advises to either do a factory reset of the device or uninstall and then reinstall all applications from Google Play Store and trusted sources only.
 
How to stay safe from malwares like StrandHogg
 
  • Unsolicited texts, emails, or sudden notifications that appear to be from a bank, retailer, or other known institution may not always be what they seem. Use caution with any link delivered to you and always read the message first.

 

  • Do not download and install applications from untrusted sources that are offered via unknown websites or links on unsolicited messages or emails. 

 

  • Turn off install from unknown source option from security settings page. 

 

  • Install applications downloaded from reputed application markets only such as Google Play Store.

 

  • Before downloading or installing any apps on mobile devices (even from a trusted application store), do some research on the developer of the app. 

 

  • Search for the developers name and scan through the results. A genuine developer is most likely to have a website and other details on the net. 

 

  • Apps that have the tags 'Editor's Choice' or 'Top Developer' are more than likely to be a genuine legitimate app.

 

  • Read and check all app permissions carefully. When in doubt the best rule of thumb to abide by is to ensure that the permissions asked by an app must comply with its functions and features. For example, if a flashlight app is requesting permission to access SMS, call logs and media files, then this is definitely a red flag and not an app you should be downloading. 

 

  • Install updates and patches as and when available from device vendors and service providers.

 

  • Always run a reputable mobile security app for your device, and keep it up to date regularly. A mobile security app can help to scan the apps you download for malware and spyware, and protects you from unsafe websites.

 

  • Like this story? Get our top stories by email.

    User 

    COMMENTS

    Radha

    3 months ago

    Quite useful!!!

    FMCGs Top Consumer Complaints List post-GST Roll-out, Eateries Come Second
    Fast-moving consumer goods (FMCG) firms have topped the list of customers' complaints list for over-charging ever since the new indirect tax regime Goods and Services Tax (GST) was rolled out on 1 July 2017.
     
    Restaurateurs came second, followed by entertainment and media firms.
     
    As per official data, as many as 42 consumer complaints were registered against various FMCG companies; many of them were found to be not passing the benefits of lower tax rates.
     
    As GST rates were cut across various categories in the GST Council meetings to reduce tax incidence on consumers, the companies were expected to pass on the benefit by lowering prices in proportion to the rate reduction.
     
    It was, however, found that many companies had not passed on the benefit of lower tax and indulged in profiteering. Complaints were later filed against them and the GST anti-profiteering watchdog National Anti-profiteering Authority (NAA) took up the cases.
     
    Some of the FMCG majors, like Hindustan Unilever Ltd (HUL), Procter & Gamble India (P&G) and Nestlé were found to have profiteered from the lower tax regime.
     
    In the latest case, the NAA last week ordered Nestlé to deposit Rs73.15 crore with Consumer Welfare Fund for not passing GST rate reduction benefit to consumers. The FMCG major has, however, said that it will consider appropriate action after studying it.
     
    Experts said that it is very difficult for FMCG companies to assess the exact impact of the lower tax given that they have multiple similar products in one category.
     
    Moreover, they sell products for as low as Rs2 for a shampoo pouch and when the rate is lowered they are not in the position to exactly assess the impact on price. Even if the assessment is done and it is found that the price should be lower by 30 paise, transaction becomes difficult as currency of that amount is not available.
     
    "Because of multiple products of similar kind it is difficult for FMCG companies to arrive at a particular price. There are very small units like toffee selling for Re 1. In this case it will be very difficult to arrive at net impact of rate cut," said Amit Bhagat, partner, Dhruva Advisors.
     
    Besides FMCG, many restaurants are also facing complaints with 14 cases being lodged. Two complaints were filed against sanitary ware firms. Media and entertainment firms have six complaints against them.
     
    Disclaimer: Information, facts or opinions expressed in this news article are presented as sourced from IANS and do not reflect views of Moneylife and hence Moneylife is not responsible or liable for the same. As a source and news provider, IANS is responsible for accuracy, completeness, suitability and validity of any information in this article.
  • Like this story? Get our top stories by email.

    User 

    COMMENTS

    Joe Maillet

    3 months ago

    File online complaints on https://pissedconsumercomplaints.com/
    https://www.complaintsboard.com/ https://www.yelp.com/

    Sandeep More

    3 months ago

    Typical bureaucratic procedures without looking at the grassroot level.

    Facebook now tracks in-store shopping, targets users with ads
    Facebook has joined hands with top retailers who are sending the social networking giant data on what the customers are buying in retail stores. Facebook, in turn, is targeting those customers with specified ads.
     
    Not just online shopping, Facebook is able to track what customers buy in stores and target those customers with ads, according to a Business Insider report.
     
    Retail companies are sending Facebook "names, phone numbers and email addresses attached to what products people have purchased, which are then used to target people with those businesses' ads".
     
    Facebook makes almost all its money by selling ads. In the third quarter (July-September) this year, Facebook's revenue was $17.6 billion and ads contributed a whopping $17.3 billion of the total revenue.
     
    The company said this is a "standard" practice for the industry.
     
    "Retailers are able to reach their customers with ads on Facebook by sharing offline events, like an in-store purchase," a company spokesperson was quoted as saying.
     
    Several users on various social media platforms like Reddit have posted about targeted advertising by Facebook.
     
    Macy's and Dick's Sporting Goods are two retailers that have already teamed up with Facebook.
     
    Facebook last year admitted that the phone numbers that its users provide for security purposes were being used to target them with ads.
     
    Facebook confirmed the use of users' phone number for targeting ads after Gizmodo reported research work carried out by academics at two US universities who found that the social network uses pieces of personal information that individuals did not explicitly provide it to target them with ads.
     
    In July, Facebook introduced new steps to let people know and adjust how their information influences the ads they see which would help them to understand more about ad-targeting on its platform.
     
    To provide greater transparency and control, the social networking giant said it would allow users to see more detailed targeting, including the interests or categories that matched them with a specific ad.
     
    To avoid being bombarded by ads on Facebook, go to privacy settings and click ad preferences. You can customize what kind of ads Facebook shows you.
     
    Disclaimer: Information, facts or opinions expressed in this news article are presented as sourced from IANS and do not reflect views of Moneylife and hence Moneylife is not responsible or liable for the same. As a source and news provider, IANS is responsible for accuracy, completeness, suitability and validity of any information in this article.
  • Like this story? Get our top stories by email.

    User 

    We are listening!

    Solve the equation and enter in the Captcha field.
      Loading...
    Close

    To continue


    Please
    Sign Up or Sign In
    with

    Email
    Close

    To continue


    Please
    Sign Up or Sign In
    with

    Email

    BUY NOW

    online financial advisory
    Pathbreakers
    Pathbreakers 1 & Pathbreakers 2 contain deep insights, unknown facts and captivating events in the life of 51 top achievers, in their own words.
    online financia advisory
    The Scam
    24 Year Of The Scam: The Perennial Bestseller, reads like a Thriller!
    Moneylife Online Magazine
    Fiercely independent and pro-consumer information on personal finance
    financial magazines online
    Stockletters in 3 Flavours
    Outstanding research that beats mutual funds year after year
    financial magazines in india
    MAS: Complete Online Financial Advisory
    (Includes Moneylife Online Magazine)
    FREE: Your Complete Family Record Book
    Keep all the Personal and Financial Details of You & Your Family. In One Place So That`s Its Easy for Anyone to Find Anytime
    We promise not to share your email id with anyone