Edition: Global  
One News Page
“Probably the fastest-access news portal in the world”
> >

More Than 1 Million Google Accounts Breached by Gooligan, New Android Malware Variant

PR Newswire Asia Thursday, 1 December 2016
Check Point reveals a major Google security breach, caused by a new Android malware variant that infects over 13,000 devices every day

SINGAPORE, Dec. 1, 2016 /PRNewswire/ -- Check Point® Software Technologies Ltd. (NASDAQ: CHKP) today announced its security researchers have revealed a new variant of Android malware, breaching the security of more than one million Google accounts. The new malware campaign, named Gooligan, roots Android devices and steals email addresses and authentication tokens stored on them. With this information, attackers can access users' sensitive data from Gmail, Google Photos, Google Docs, Google Play, Google Drive, and G Suite.

"This theft of over a million Google account details is very alarming and represents the next stage of cyber-attacks," said Michael Shaulov, Check Point's head of mobile products. "We are seeing a shift in the strategy of hackers, who are now targeting mobile devices in order to obtain the sensitive information that is stored on them."

*Key Findings:*
* Campaign infects 13,000 devices each day and is the first to root over a million devices.
* Hundreds of the email addresses are associated with enterprise accounts worldwide.
* Gooligan targets devices on Android 4 (Jelly Bean, KitKat) and 5 (Lollipop), which represent *nearly 74% of Android devices in use today. *
* After attackers gain control over the device, they generate revenue by fraudulently installing apps from Google Play and rating them on behalf of the victim.
* Every day Gooligan installs at least 30,000 apps on breached devices, or over 2 million apps since the campaign began.

Check Point reached out to the Google security team immediately with information on this campaign. "We appreciate Check Point's partnership as we've worked together to understand and take action on these issues. As part of our ongoing efforts to protect users from the Ghost Push family of malware, we've taken numerous steps to protect our users and improve the security of the Android ecosystem overall," stated Adrian Ludwig, director of Android security, Google.

Check Point's Mobile Research Team first encountered Gooligan's code in the malicious SnapPea app last year. In August 2016, the malware reappeared with a new variant and has since infected at least 13,000 devices per day. *About 40% of these devices are located in Asia and about 12% are in Europe.* Hundreds of the exposed email addresses are associated with enterprises around the world. The infection begins when a user downloads and installs a Gooligan-infected app on a vulnerable Android device, or by clicking on malicious links in phishing attack messages.

Check Point is offering a free online tool (https://gooligan.checkpoint.com/ ) that allows users to check if their account has been breached. "If your account has been breached, a clean installation of an operating system on your mobile device is required. This complex process is called flashing, and we recommend powering off your device, and approaching a certified technician or your mobile service provider, to re-flash your device," added Shaulov.

*Follow Check Point via:*
Check Point Blog: http://blog.checkpoint.com/  
Twitter: http://www.twitter.com/checkpointsw  
Facebook: http://www.facebook.com/checkpointsoftware  
YouTube: http://www.youtube.com/user/CPGlobal
LinkedIn: https://www.linkedin.com/company/check-point-software-technologies

*About Check Point Software Technologies Ltd.*
Check Point Software Technologies Ltd. (www.checkpoint.com) is the largest network cyber security vendor globally, providing industry-leading solutions and protecting customers from cyberattacks with an unmatched catch rate of malware and other types of threats. Check Point offers a complete security architecture defending enterprises – from networks to mobile devices – in addition to the most comprehensive and intuitive security management. Check Point protects over 100,000 organizations of all sizes.

For more information, please call +65-6324-6588 or email prsg@mcgallen.com.
Share on
Share on
Post on 
Share by

Recent related news

Google Play faces cat and mouse game with sneaky Android malware

What’s the best way to avoid Android malware? Downloading all your apps from the Google Play store -- where software is vetted – is perhaps the best advice....
PC World - TechnologyAlso reported by •SoftpediaThe Next WebBGR India

Google App Now Features Recent Search Interface for Browsing History

Google App Now Features Recent Search Interface for Browsing History
Recently, Google brought a major change to its Google app on Android and iOS, when it introduced tappable shortcuts. These would provide users with a much easier...
Softpedia - TechnologyAlso reported by •The Next WebBGR India

Sony Worked With Google on Audio Quality Improvements in Android O

Sony Worked With Google on Audio Quality Improvements in Android O
Yesterday, Google released the first Developer Preview of its newest Android OS version, giving developers the first glimpse at features that can be found in...
Softpedia - Technology

O, hello there! Google offers sneak peek at Android 8 in first developer preview

It still may be two months until I/O, but Google is too excited to wait. In a post on the Android Developer Blog today, Google pulled back the curtain on some of...
PC World - TechnologyAlso reported by •The Next Web

What's new in Android O?

We might not know exactly what Android O is going to be called, or exactly when it will be released, but the arrival of the developer preview means that we now...
betanews - Technology

Google: Half of Android devices haven’t been patched in a year or more

Google engineers yesterday acknowledged that half of all Android devices had not received a security update in the past year, even as they argued that the firm...
ITworld - Computer Industry

Google Assistant updated with new tasks; now serves you IMDB ratings, Mars weather and more

Google has updated its Assistant with a host of new and improved features, letting the virtual assistant aid users further. Google Assistant can now keep track...
BGR India - TechnologyAlso reported by •Softpediabizjournals

Andy Rubin Teases Essential’s Premium Bezel-Less Smartphone

Andy Rubin Teases Essential’s Premium Bezel-Less Smartphone
Earlier this year, Android co-creator Andy Rubin talked about his new company called Essential Products and the intention to build a premium Android-running...
Softpedia - Technology

You Might Like

Other recent news in Press Releases

SHAREHOLDER ALERT: GOLDBERG Law PC Announces the Filing of a Securities Class Action Lawsuit Against Tempur Sealy International, Inc.Andrew Freeman Joins H.I.G. Capital’s Middle Market Team in SAN FRANCISCO
Southeast Regional Symposium on Mitochondrial Medicine Planned for April 7-8 in BIRMINGHAM, ALCitizens Against Government Waste Praises New White House Office of AMERICAN INNOVATION
International Surrogacy Programs Offer a Model for the UNITED STATESMore than 200 physicians and scientists ask PRESIDENT TRUMP to convene an independent vaccine safety commission
Author Donald Quinn’s Newly Released “A Prophets Bones” is a Thrilling Adventure that Reveals the Mystery Behind Kevin’s DESTINYProfessor STEPHEN HAWKING Delivers Lecture by Hologram in Hong Kong
Statement by U.S. Conference of Mayors CEO and Executive Director Tom Cochran on Today's Remarks on Sanctuary Jurisdictions by ATTORNEY GENERAL Jeff SessionsMICHIGAN’s Best Colleges for 2017 Determined by LearnHowToBecome.org


Environmentally friendly: One News Page is hosted on servers powered solely by renewable energy
© 2017 One News Page Ltd. All Rights Reserved.  |  About us  |  Disclaimer  |  Press Room  |  Terms & Conditions  |  Privacy Policy  |  Content Accreditation
 RSS  |  News for my Website  |  Free news search widget  |  Help  |  Contact us  |  DMCA / Content Removal
How are we doing? Send us your feedback  |   LIKE us on Facebook   FOLLOW us on Twitter   FIND us on Google+