GFI Warns of Malware in Fake Flash Player App
Instead of delivering the legitimate app, scam Web sites deliver an SMS Trojan bundled with adware.
GFI Labs researchers are warning of scam Web sites offering a fake version of Flash Player for Android.
"Last Wednesday (Aug. 15), Google began phasing out Flash Player for Android devices," notes SecurityNewsDaily's Ben Weitzenkorn. "New installations are no longer permitted from the official Google Play app store, and Google is only updating Flash Player on devices that already have the software installed. (Flash functions will be handled by new functions in the HTML5 Web standard.)"
"Last week's removal has prompted scammers to start promoting fake versions of the software to unsuspecting smartphone owners," writes Threatpost's Christopher Brook. "While researching the scamware, security firm GFI Labs uncovered a separate fake version of the Flash Player that's not only bogus but an SMS Trojan that comes bundled with adware. According to a post on the company’s blog, the app named 'adobeflashinstaller.apk' comes replete with adware from the mobile ad network AirPush."