Android Malware Defeats Two-Factor Authentication

HardOCP News

[H] News
Joined
Dec 31, 1969
Messages
0
Uh oh, all you Android users out there need to read this.

Once installed on a device, Android.Bankosy creates a back door that opens communication with a command and control server. Once the command and control server has user identification information – the first factor in two-factor authorization – it can set up unconditional call forwarding. Then it can initiate a financial transaction and the call with the one-time password goes straight to the third party.
 
Yeah, that's why two form factor authentication should never have both pieces done on the same device.
 
Any device that does call forwarding is susceptible. You can limit your exposure to MITM by using encrypted communication for multifactor. I use Hangouts for both calls and SMS so they're both protected by encryption.
 
These have been popping up for years now. Doesn't appear that it sends back the OTP, so an institution should still be able to recognize that the OTP is being sent back by the same device it was sent to.

But if it's simply an OTP entered into a web form separately, hard to contend with outside of very good behavioral recognition as to the session behavior of the client.
 
Yawn. How ones one get this program? Sideload it? Download it from pirate app sites? After checking that box saying download from unknown sources? More dribble from the uninformed.
 
Seems like its only really a risk if you're an idiot that sideloads apps, it could be packaged in an untrustworthy app.
 
Yay more scare tactics by AV company that wants to sell AV to stupid users!

Don't want to worry about this? Don't pirate your apps or use shady app stores...oh wait shady app stores host pirated software.

Boy the common denominator here is really hard to figure out.
 
Yawn. How ones one get this program? Sideload it? Download it from pirate app sites? After checking that box saying download from unknown sources? More dribble from the uninformed.

Yes like many Android security issues this would primarily affect people side loading shady apps and using foreign app stores filled with illegal apps.
 
Fine line between being open like Android is right now and being more closed to prevent these malwares
 
Yes like many Android security issues this would primarily affect people side loading shady apps and using foreign app stores filled with illegal apps.

So basically, you're talking about 1-2% of Android users at most, and that 1-2% of users are already involved in "shady" or "illegal" activities...I'm okay with them getting shafted. :)
 
Yeah, that's why two form factor authentication should never have both pieces done on the same device.

That's why I have insisted that they are wrong in calling this Two-Factor Authentication. It's a false claim which is why it's being defeated this way.
 
Back
Top