Edition: Global  
One News Page
“Probably the fastest-access news portal in the world”
> >

More Than 1 Million Google Accounts Breached by Gooligan, New Android Malware Variant

PR Newswire Asia Thursday, 1 December 2016
Check Point reveals a major Google security breach, caused by a new Android malware variant that infects over 13,000 devices every day

SINGAPORE, Dec. 1, 2016 /PRNewswire/ -- Check Point® Software Technologies Ltd. (NASDAQ: CHKP) today announced its security researchers have revealed a new variant of Android malware, breaching the security of more than one million Google accounts. The new malware campaign, named Gooligan, roots Android devices and steals email addresses and authentication tokens stored on them. With this information, attackers can access users' sensitive data from Gmail, Google Photos, Google Docs, Google Play, Google Drive, and G Suite.

"This theft of over a million Google account details is very alarming and represents the next stage of cyber-attacks," said Michael Shaulov, Check Point's head of mobile products. "We are seeing a shift in the strategy of hackers, who are now targeting mobile devices in order to obtain the sensitive information that is stored on them."

*Key Findings:*
* Campaign infects 13,000 devices each day and is the first to root over a million devices.
* Hundreds of the email addresses are associated with enterprise accounts worldwide.
* Gooligan targets devices on Android 4 (Jelly Bean, KitKat) and 5 (Lollipop), which represent *nearly 74% of Android devices in use today. *
* After attackers gain control over the device, they generate revenue by fraudulently installing apps from Google Play and rating them on behalf of the victim.
* Every day Gooligan installs at least 30,000 apps on breached devices, or over 2 million apps since the campaign began.

Check Point reached out to the Google security team immediately with information on this campaign. "We appreciate Check Point's partnership as we've worked together to understand and take action on these issues. As part of our ongoing efforts to protect users from the Ghost Push family of malware, we've taken numerous steps to protect our users and improve the security of the Android ecosystem overall," stated Adrian Ludwig, director of Android security, Google.

Check Point's Mobile Research Team first encountered Gooligan's code in the malicious SnapPea app last year. In August 2016, the malware reappeared with a new variant and has since infected at least 13,000 devices per day. *About 40% of these devices are located in Asia and about 12% are in Europe.* Hundreds of the exposed email addresses are associated with enterprises around the world. The infection begins when a user downloads and installs a Gooligan-infected app on a vulnerable Android device, or by clicking on malicious links in phishing attack messages.

Check Point is offering a free online tool (https://gooligan.checkpoint.com/ ) that allows users to check if their account has been breached. "If your account has been breached, a clean installation of an operating system on your mobile device is required. This complex process is called flashing, and we recommend powering off your device, and approaching a certified technician or your mobile service provider, to re-flash your device," added Shaulov.

*Follow Check Point via:*
Check Point Blog: http://blog.checkpoint.com/  
Twitter: http://www.twitter.com/checkpointsw  
Facebook: http://www.facebook.com/checkpointsoftware  
YouTube: http://www.youtube.com/user/CPGlobal
LinkedIn: https://www.linkedin.com/company/check-point-software-technologies

*About Check Point Software Technologies Ltd.*
Check Point Software Technologies Ltd. (www.checkpoint.com) is the largest network cyber security vendor globally, providing industry-leading solutions and protecting customers from cyberattacks with an unmatched catch rate of malware and other types of threats. Check Point offers a complete security architecture defending enterprises – from networks to mobile devices – in addition to the most comprehensive and intuitive security management. Check Point protects over 100,000 organizations of all sizes.

For more information, please call +65-6324-6588 or email prsg@mcgallen.com.
Share on
Share on
Post on 
Share by

Recent related news

Samsung delays its new phone, and showcases tablets instead

[...] Samsung is spotlighting new Android and Windows tablets after delaying the Galaxy S8 smartphone — an indirect casualty of the unprecedented September...
SeattlePI.com - Technology

Google's digital assistant comes to new Android phones

(Reuters) - Alphabet Inc’s Google announced on Sunday that it will bring its digital assistant to smartphones running the latest versions of its Android...
Reuters - BusinessAlso reported by •BGR IndiaTUAW

Android Ransomware Demands Victims Speak Code to Unlock Phone

Android Ransomware Demands Victims Speak Code to Unlock Phone
An older Android ransomware is getting some new capabilities as attackers seem to be playing around with the code a bit. Android.Lockdroid.E, which has been...
Softpedia - Technology

Verizon to buy Yahoo at reduced price

The deal, announced Tuesday morning, addresses Yahoo’s recent disclosures of two massive data breaches — one affecting at least 500 million accounts in 2014...
SFGate - Business

Nokia relaunches 3310, three new Android smartphones at MWC 2017: All specifications, features and more

HMD Global, the Finnish company that owns the rights to use Nokia's brand on mobile phones, launched three moderately priced Nokia smartphones that run on...
DNA - Front PageAlso reported by •The Verge

How Google is trying to make SMS sexy again

How Google is trying to make SMS sexy again
Messaging apps are constantly adding functionality to allow you to do more than simply chat with your contacts. But now, Google is going all-out to champion SMS...
The Next Web - Internet

Google’s senior executive hints Android O could be called Oreo, but don’t jump to conclusions yet

Although, the adoption rate of the latest Android Nougat is still barely over a percent, with Google I/O 2017 inching closer, it’s about time we start talking...
BGR India - Technology

Google, FCA Test-Drive New Open Source Infotainment System

Google, FCA Test-Drive New Open Source Infotainment System
Google and FCA this week showcased a new in-auto infotainment platform at CES in Las Vegas. The open source system combines Uconnect with Android Auto. The...
Linux Insider - Computer IndustryAlso reported by •TUAWSoftpedia

You Might Like

Other recent news in Press Releases

Corning and Altiostar to Showcase Digital Integration of DAS with vRAN at MOBILE WORLD CONGRESS 2017 in BarcelonaNokia at Mobile WORLD CONGRESS: Delivering on its strategy to lead in 5G, IoT and cloud, tap new growth markets #MWC17
Meet the HUAWEI P10, a Stunning Combination of Technology and ArtRicoh Announces Pre-Ordering for First-of-its-Kind, 360-Degree, LIVE STREAMING Video Camera
Panasonic and Digital Hollywood University Will Shoot and LIVE STREAM YOHJI YAMAMOTO's Fashion Show at the Paris CollectionSamsung Expands Tablet Portfolio With Galaxy Tab S3 and GALAXY BOOK, Offering Enhanced Mobile Entertainment and Productivity
SanDisk Now Offers 256GB of Extra Storage for IPHONE and iPadSamsung Introduces New GEAR VR With Controller, Expanding GEAR VR Ecosystem to Make VR Experiences Easier, More Enjoyable
Candace Saldarini, M.D., Director of Medical Strategy, ODH, Inc.™ to Present at 10th Annual MEDICAID Managed Care Summit, February 28 in Arlington, VA



Georges Wedji RT @CR_UK: Dr Bunch’s #CRUKGrandChallenge aims to develop a ‘Google Earth’ for tumours to improve cancer diagnosis & treatment https://t.co… 5 minutes ago


Jose Mendoza White #House among more than a million #Websites people have asked #Google to remove https://t.co/0drCwsqP71 44 minutes ago


Technova https://t.co/RSqaTc1jZ7 Why Google Take-Down more than 1 Million Websites? #Technova 52 minutes ago


Nat RT @CR_UK: Dr Bunch’s #CRUKGrandChallenge aims to develop a ‘Google Earth’ for tumours to improve cancer diagnosis & treatment https://t.co… 57 minutes ago


15 Minute News RT @15MinuteNewsTec: White House among more than a million websites people have asked Google to remove https://t.co/XHDOB4Yov2 #Technology 1 hour ago


Technology News White House among more than a million websites people have asked Google to remove https://t.co/XHDOB4Yov2 #Technology 2 hours ago

Environmentally friendly: One News Page is hosted on servers powered solely by renewable energy
© 2017 One News Page Ltd. All Rights Reserved.  |  About us  |  Disclaimer  |  Press Room  |  Terms & Conditions  |  Privacy Policy  |  Content Accreditation
 RSS  |  News for my Website  |  Free news search widget  |  Help  |  Contact us  |  DMCA / Content Removal
How are we doing? Send us your feedback  |   LIKE us on Facebook   FOLLOW us on Twitter   FIND us on Google+