Researchers at NQ Mobile recently discovered a new variant of the DroidKungFu malware, called DKFBootKit, which specifically targets users of rooted Android devices.
"The malware piggybacks on apps that would otherwise ask for root privileges anyway -- and, once the user has agreed, sets up camp deep in the smartphone's boot sequence and replaces commands such as ifconfig and mount to help ensure it is started early in the boot sequence," The H Security reports.
"The malware launches a bot component that contacts various command and control servers and waits for further commands," the article states. "The company has not yet said what the bot is used for but reports having already seen more than one hundred files infected by DKFBootKit."
Go to "Android bot attacks rooted smartphones" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204660770;s=9477;x=7936;f=201812281321530;u=j;z=TIMESTAMP;a=20396194;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.