Virus library
An analysis of the technologies used by cybercriminals allows us to draw conclusions about the virus industry’s possible vectors of development and more effectively confront future threats. You, too, can learn what actions various malicious programs take in infected systems and how to withstand them.
Android.Recon.3.origin in virus library:
Android.Recon is a family of commercial spyware for Android. These programs are designed to monitor various user activities. In particular, they can read text and email messages, get information on outgoing calls, and track GPS coordinates of the infected device. All gathered data is stored on a special server and can be accessed via a web interface.
The programs are distributed on commercial basis. To install and configure these applications, physical access to a mobile device is required.
Once installed, the programs belonging to the Android.Recon family can be detected only in the system menu. Usually they are disguised as legitimate applications, such as photo gallery, and operate like normal programs, which makes it almost impossible for the user to discover their real purpose.
Vulnerabilities for Android
According to statistics, every fifth program for Android contains a vulnerability (or, in other words, a "loophole") that lets cybercriminals successfully introduce Trojans onto mobile devices and manipulate them into doing whatever actions they need them to.
Dr.Web Security Auditor for Android diagnoses and analyses a mobile device’s security and offers solutions to address security problems and vulnerabilities.
