Android Malware DroidKungFu Turns Handsets Into Bots

For those that use the Android platform and are still running Android 2.2 Froyo and below there’s a new malware doing the rounds that you should keep your eyes open for and avoid if at all possible. The new Android malware is know as DroudKungFu and can turn your handset into a bot.

According to the guys over at Redmond Pie, by way of The Abstract, PH.D. student Yajin Zhou and assistant professor Xuxian Jiang of the North Carolina State University discovered the DroidKungFu malware that takes advantage of a vulnerability found in Android 2.2 Froyo and lower.

Apparently when a user installs the Android malware it opens a backdoor that delivers complete access to the handset to the hacker and all data on the device…

“In Android versions 2.2 (Froyo) and earlier, DroidKungFu takes advantage of two vulnerabilities in the platform software to install a backdoor that gives hackers full control of your phone. Not only do they have access to all of your user data, but they can turn your phone into a bot — and basically make your smartphone do anything they want.”

Apparently if you are running higher than Android 2.2 Froyo, your smartphone can still be infected but to a lesser degree, and although the hacker can’t gain full control of the device, some data is still vulnerable like the handset’s unique ID number.