Edition: Global  
One News Page
“Probably the fastest-access news portal in the world”
> >

More Than 1 Million Google Accounts Breached by Gooligan, New Android Malware Variant

PR Newswire Asia Thursday, 1 December 2016
Check Point reveals a major Google security breach, caused by a new Android malware variant that infects over 13,000 devices every day

SINGAPORE, Dec. 1, 2016 /PRNewswire/ -- Check Point® Software Technologies Ltd. (NASDAQ: CHKP) today announced its security researchers have revealed a new variant of Android malware, breaching the security of more than one million Google accounts. The new malware campaign, named Gooligan, roots Android devices and steals email addresses and authentication tokens stored on them. With this information, attackers can access users' sensitive data from Gmail, Google Photos, Google Docs, Google Play, Google Drive, and G Suite.

"This theft of over a million Google account details is very alarming and represents the next stage of cyber-attacks," said Michael Shaulov, Check Point's head of mobile products. "We are seeing a shift in the strategy of hackers, who are now targeting mobile devices in order to obtain the sensitive information that is stored on them."

*Key Findings:*
* Campaign infects 13,000 devices each day and is the first to root over a million devices.
* Hundreds of the email addresses are associated with enterprise accounts worldwide.
* Gooligan targets devices on Android 4 (Jelly Bean, KitKat) and 5 (Lollipop), which represent *nearly 74% of Android devices in use today. *
* After attackers gain control over the device, they generate revenue by fraudulently installing apps from Google Play and rating them on behalf of the victim.
* Every day Gooligan installs at least 30,000 apps on breached devices, or over 2 million apps since the campaign began.

Check Point reached out to the Google security team immediately with information on this campaign. "We appreciate Check Point's partnership as we've worked together to understand and take action on these issues. As part of our ongoing efforts to protect users from the Ghost Push family of malware, we've taken numerous steps to protect our users and improve the security of the Android ecosystem overall," stated Adrian Ludwig, director of Android security, Google.

Check Point's Mobile Research Team first encountered Gooligan's code in the malicious SnapPea app last year. In August 2016, the malware reappeared with a new variant and has since infected at least 13,000 devices per day. *About 40% of these devices are located in Asia and about 12% are in Europe.* Hundreds of the exposed email addresses are associated with enterprises around the world. The infection begins when a user downloads and installs a Gooligan-infected app on a vulnerable Android device, or by clicking on malicious links in phishing attack messages.

Check Point is offering a free online tool (https://gooligan.checkpoint.com/ ) that allows users to check if their account has been breached. "If your account has been breached, a clean installation of an operating system on your mobile device is required. This complex process is called flashing, and we recommend powering off your device, and approaching a certified technician or your mobile service provider, to re-flash your device," added Shaulov.

*Follow Check Point via:*
Check Point Blog: http://blog.checkpoint.com/  
Twitter: http://www.twitter.com/checkpointsw  
Facebook: http://www.facebook.com/checkpointsoftware  
YouTube: http://www.youtube.com/user/CPGlobal
LinkedIn: https://www.linkedin.com/company/check-point-software-technologies

*About Check Point Software Technologies Ltd.*
Check Point Software Technologies Ltd. (www.checkpoint.com) is the largest network cyber security vendor globally, providing industry-leading solutions and protecting customers from cyberattacks with an unmatched catch rate of malware and other types of threats. Check Point offers a complete security architecture defending enterprises – from networks to mobile devices – in addition to the most comprehensive and intuitive security management. Check Point protects over 100,000 organizations of all sizes.

For more information, please call +65-6324-6588 or email prsg@mcgallen.com.
0
shares
Share on
Facebook
Share on
Twitter
Post on 
Reddit
Share by
Email
 

Recent related news

Android One comes to the US at last with the Moto X4

Android One comes to the US at last with the Moto X4
When it first launched in June 2014, Android One was envisioned by Google as a way to bring the mobile platform with its latest updates and features to easily...
The Next Web - InternetAlso reported by •Linux InsiderBGR India

New Mobile Banking Trojan can Infect Millions of Android users

New Mobile Banking Trojan can Infect Millions of Android users
Banking Trojans have regained a lot of their popularity over the past few months. While these tools have been around for several years now, they are once again...
The Merkle - MarketsAlso reported by •Business Wire India

Google taps the Moto X4 as its first Android One phone for Project Fi

Google will bring its Android One program to the U.S. for the first time with Motorola's new Moto X4. The phone, which runs the "pure Android experience"...
Mashable - InternetAlso reported by •Linux InsiderBGR IndiaThe Verge

Apple Music app for Android updated with 'OK Google' support, more

Apple on Tuesday updated its Apple Music app for Android with a few enhancements that bring the title more in line with its native iOS counterpart, as well as...
AppleInsider - Computer Industry

Target stores switching from Apple to Android for sales-floor devices

Target Corp. plans to replace tens of thousands of Apple Inc.-made handheld devices used by sales-floor staff to track inventory and do other everyday tasks with...
bizjournals - BusinessAlso reported by •The Verge

Google will pay people to fight ISIS from new fund

Google is to pay people with new and innovative ideas to combat the spread of extremist material online, particularly from the Islamic State militant group...
Raw Story - USAlso reported by •The Verge

CCleaner Malware Targeted Intel, Microsoft, Google, More in Industrial Espionage

CCleaner Malware Targeted Intel, Microsoft, Google, More in Industrial Espionage
The recently discovered CCleaner malware was much more severe than previously suspected, as researchers find that it was designed for industrial espionage in...
Softpedia - Technology

New Amnesia Ransomware Variant Poses as WannaCry Clone

New Amnesia Ransomware Variant Poses as WannaCry Clone
Many different ransomware types have come and gone over the past few years. This industry is booming like never before, with new variants rolling out on a...
The Merkle - Markets


You Might Like


Other recent news in Press Releases

A.M. Best Comments on Impact to INSURANCE Industry Following Central Mexico EarthquakeProgress SOFTWARE Announces Details for Fiscal Third Quarter 2017 Earnings Release and Conference Call
Univision Communications Inc. to Broadcast a Live Coast-to-Coast 7-Hour Special “Unidos por los Nuestros” to Benefit Communities Impacted by Recent Natural Disasters in Puerto Rico, MEXICO, Florida and TexasCompetitive/Market Intelligence Basics Workshop (London, UNITED KINGDOM - October 26-27, 2017) - Research and Markets
Xfinity Stores Nationwide to Open at 8:00 A.M. On September 22 for IPHONE 8 LaunchHumana and Humana Foundation Offer Support to PUERTO RICO Communities Severely Impacted by Multiple Hurricanes
AUSTRALIA and New Zealand (ANZ) Distributed Denial of Service (DDoS) Solution Market 2015-2017 & Forecasts to 2021 with 2016 as the Base Year - Research and MarketsKilpatrick Townsend Names Kristopher Reed Managing Partner of SHANGHAI Office
Nintendo Download: The First Pokémon Game on NINTENDO SWITCH!HEPATITIS A Outbreak: L.A. City’s Homeless Policies a Threat

Twitter

Environmentally friendly: One News Page is hosted on servers powered solely by renewable energy
© 2017 One News Page Ltd. All Rights Reserved.  |  About us  |  Disclaimer  |  Press Room  |  Terms & Conditions  |  Privacy Policy  |  Content Accreditation
 RSS  |  News for my Website  |  Free news search widget  |  Help  |  Contact us  |  DMCA / Content Removal
How are we doing? Send us your feedback  |   LIKE us on Facebook   FOLLOW us on Twitter   FIND us on Google+