Social media and Tech Updates

Translate

Researchers discovered Backdoored Android version of 'Pokemon GO'


Pokemon GO is the first Pokemon game sanctioned by Nintendo for iOS and Android devices, But the game had not been officially released globally. And if you want to use it and downloading the APK from third parties, you are putting yourself in risk.

Researchers from Proofpoint have discovered an infected Android version( APK ) of Pokemon GO. APK was modified to include the malicious remote access tool (RAT) called DroidJack (also known as SandroRAT), which would virtually give an attacker full control over a victim’s phone.

Proofpoint noted that "we have not observed this malicious APK in the wild"; which was uploaded 72 hours after the game was officially released in New Zealand and Australia.

If you have already installed APK. Check the SHA256 hash of the downloaded APK. The malicious APK that researchers analyzed has a SHA256 hash of 15db22fd7d961f4d4bd96052024d353b3ff4bd135835d2644d94d74c925af3c4.

Another simple, Go to Settings -> Apps -> Pokemon GO and then scrolling down to the PERMISSIONS section. Figure shows a list of permissions granted to the legitimate application and backdoored Pokemon GO APK.





No comments:

Post a Comment