Edition: Global  
One News Page
“Probably the fastest-access news portal in the world”
> >

More Than 1 Million Google Accounts Breached by Gooligan, New Android Malware Variant

PR Newswire Asia Thursday, 1 December 2016
Check Point reveals a major Google security breach, caused by a new Android malware variant that infects over 13,000 devices every day

SINGAPORE, Dec. 1, 2016 /PRNewswire/ -- Check Point® Software Technologies Ltd. (NASDAQ: CHKP) today announced its security researchers have revealed a new variant of Android malware, breaching the security of more than one million Google accounts. The new malware campaign, named Gooligan, roots Android devices and steals email addresses and authentication tokens stored on them. With this information, attackers can access users' sensitive data from Gmail, Google Photos, Google Docs, Google Play, Google Drive, and G Suite.

"This theft of over a million Google account details is very alarming and represents the next stage of cyber-attacks," said Michael Shaulov, Check Point's head of mobile products. "We are seeing a shift in the strategy of hackers, who are now targeting mobile devices in order to obtain the sensitive information that is stored on them."

*Key Findings:*
* Campaign infects 13,000 devices each day and is the first to root over a million devices.
* Hundreds of the email addresses are associated with enterprise accounts worldwide.
* Gooligan targets devices on Android 4 (Jelly Bean, KitKat) and 5 (Lollipop), which represent *nearly 74% of Android devices in use today. *
* After attackers gain control over the device, they generate revenue by fraudulently installing apps from Google Play and rating them on behalf of the victim.
* Every day Gooligan installs at least 30,000 apps on breached devices, or over 2 million apps since the campaign began.

Check Point reached out to the Google security team immediately with information on this campaign. "We appreciate Check Point's partnership as we've worked together to understand and take action on these issues. As part of our ongoing efforts to protect users from the Ghost Push family of malware, we've taken numerous steps to protect our users and improve the security of the Android ecosystem overall," stated Adrian Ludwig, director of Android security, Google.

Check Point's Mobile Research Team first encountered Gooligan's code in the malicious SnapPea app last year. In August 2016, the malware reappeared with a new variant and has since infected at least 13,000 devices per day. *About 40% of these devices are located in Asia and about 12% are in Europe.* Hundreds of the exposed email addresses are associated with enterprises around the world. The infection begins when a user downloads and installs a Gooligan-infected app on a vulnerable Android device, or by clicking on malicious links in phishing attack messages.

Check Point is offering a free online tool (https://gooligan.checkpoint.com/ ) that allows users to check if their account has been breached. "If your account has been breached, a clean installation of an operating system on your mobile device is required. This complex process is called flashing, and we recommend powering off your device, and approaching a certified technician or your mobile service provider, to re-flash your device," added Shaulov.

*Follow Check Point via:*
Check Point Blog: http://blog.checkpoint.com/  
Twitter: http://www.twitter.com/checkpointsw  
Facebook: http://www.facebook.com/checkpointsoftware  
YouTube: http://www.youtube.com/user/CPGlobal
LinkedIn: https://www.linkedin.com/company/check-point-software-technologies

*About Check Point Software Technologies Ltd.*
Check Point Software Technologies Ltd. (www.checkpoint.com) is the largest network cyber security vendor globally, providing industry-leading solutions and protecting customers from cyberattacks with an unmatched catch rate of malware and other types of threats. Check Point offers a complete security architecture defending enterprises – from networks to mobile devices – in addition to the most comprehensive and intuitive security management. Check Point protects over 100,000 organizations of all sizes.

For more information, please call +65-6324-6588 or email prsg@mcgallen.com.
0
shares
Share on
Facebook
Share on
Twitter
Post on 
Reddit
Share by
Email
 

Recent related news

iOS and its effect on enterprise security

Over the past decade, iOS devices have found their way into many businesses. According to a new report this has led to an increase in the number of attacks and...
betanews - Technology

Android Virus Can Steal Passwords, Credit Cards, and Contact Lists

Android Virus Can Steal Passwords, Credit Cards, and Contact Lists
Android users are being targeted by a new form of malware flagged by security company Dr. Web as Android.BankBot.211.origin, which attempts to extract financial...
Softpedia - Technology

Firefox Focus Passes One Million Downloads Mark on Android, Gets New Features

Firefox Focus Passes One Million Downloads Mark on Android, Gets New Features
Firefox Focus launched on Google's Android mobile platform only a month ago, and it looks like it already passed the one million downloads mark, so Mozilla wants...
Softpedia - Technology

Old Android malware uses new tricks to turn your phone into a spying device

Old Android malware uses new tricks to turn your phone into a spying device
Weeks after discovering a malicious agent programmed to snatch patient data from Israeli hospitals, Dutch cybersecurity firm Trend Micro has come across...
The Next Web - Internet

Google’s Motion Stills app lands on Android to make buttery-smooth GIFs

Google’s Motion Stills app lands on Android to make buttery-smooth GIFs
When Google launched Motion Stills on iOS last year, we lamented not being able to create the same buttery-smooth GIFs on Android. Fret no more: the app has now...
The Next Web - Internet

Google is using the impending death of its blob emoji to promote Allo

Google is using the impending death of its blob emoji to promote Allo
There’s a very divisive split in how people feel about the Google-designed blob emoji that have long been standard in Android and Gchat (RIP). But soon...
The Verge - TechnologyAlso reported by •SFGate

Honda Amaze Privilege edition launched in India, prices start from Rs 6.49 lakh

Honda Car India has launched the new Amaze ‘Privilege Edition’ aimed at buyers looking for some more feature loaded options in the compact sedan space. The...
BGR India - Technology

Google rolls out new protections against phishing plugins

Google rolls out new protections against phishing plugins
Google is making it even harder to accidentally install a malicious plugin. Today, the company announced new changes to the way Google services handle plugins,...
The Verge - Technology


You Might Like


Other recent news in Press Releases

BHOPAL Surgeons have a date with a Roving RobotTheresa O’Keefe-Klein Joins the exclusive Haute Residence REAL ESTATE Network
John Mappin of Camelot Castle, ENGLAND, Meets President Donald J Trump and First Lady Melania Trump in Washington DC.Zia Consulting Publishes New White Paper on Accelerating the Claims Process Across the INSURANCE Industry
CHICAGO Education Expert Takes on Nation’s Bully Epidemic in New BookFairview Fire Protection District (FFPD) Launches New WORDPRESS Website Built by KO Websites Inc.
Driving ARIZONA Illustrates Importance of Instruction in Defensive DrivingKika Celebrates the New Summer Action Adventure, "VALERIAN AND THE CITY OF A THOUSAND PLANETS" Now In Theatres with Customized Keyboard Themes and Stickers
BM Windows Website Features Location Finder Tool with More than 1,500 SAN DIEGO Addresses

Twitter

pic

subham RT @pranesh: In May 2015, CAG's report found that the govt undercharged #Jio by more than ₹3000 crore ($570 million). https://t.co/tnlZPouF… 25 minutes ago

pic

George Avalos Amid @Google plans, downtown San Jose office tower fetches record price of $80 million, more than $500 sq-ft #CRE… https://t.co/DexNU3c3cr 47 minutes ago

pic

Mohammed Ibrahim RT @pranesh: In May 2015, CAG's report found that the govt undercharged #Jio by more than ₹3000 crore ($570 million). https://t.co/tnlZPouF… 1 hour ago

pic

Juha-Matti Laurio RT @medConfidential: "transfer of more than a million health records to the AI developer DeepMind is boneheaded and dishonest" https://t.co… 2 hours ago

pic

Laura B RT @googleeurope: Announcing more than EUR 21 million in funding from Round 3 of the Digital News Initiative Fund: https://t.co/F2MVGyWP3G… 3 hours ago

pic

आदिल RT @pranesh: In May 2015, CAG's report found that the govt undercharged #Jio by more than ₹3000 crore ($570 million). https://t.co/tnlZPouF… 3 hours ago

Environmentally friendly: One News Page is hosted on servers powered solely by renewable energy
© 2017 One News Page Ltd. All Rights Reserved.  |  About us  |  Disclaimer  |  Press Room  |  Terms & Conditions  |  Privacy Policy  |  Content Accreditation
 RSS  |  News for my Website  |  Free news search widget  |  Help  |  Contact us  |  DMCA / Content Removal
How are we doing? Send us your feedback  |   LIKE us on Facebook   FOLLOW us on Twitter   FIND us on Google+