The mobile security company NetQin spotted another piece of malware for Android devices in China. Dubbed “Hong Tou Tou”, it is distributed by hiding itself in legitimate apps such as the game RoboDefense.
Once the infected app is started, the virus will connect to a network in the background and attempt to collect private information in the phone using keywords. Hong Tou Tou will then encrypt the data and send it to a remote server controlled by the virus writer. As a result, a serious leakage of the user’s privacy can happen.
NetQin goes on suggesting how users can protect themselves. First they advise users to download apps from trusted sources, only. Moreover, one shouldn’t blindly accept application requests — i.e. not that many games need permanent network connection, except if they [games] are ad-supported apps. Likewise, users should be alert for unusual behaviors on their phones, such as stealthy network connection or SMS. Finally, they suggest grabbing some security app like their NetQin Mobile Anti-Virus.
I think I’ll go without it and just keep checking for the permissions required by the apps I download. Android is pretty safe if you know how to play it. 😉
UPDATE: Duplicate post: Blake has already covered Hong Tou Tou here. You can just ignore what I said. 🙂