GingerMaster Malware Threatens Android 2.3 Devices

Android users are facing a new threat on their mobile devices as a potent variant of the DroidKungFu malware has been discovered. GingerMaster is especially worrisome, infecting Android 2.3 using a root exploit that gives the attacker complete control of the operating system. A seemingly innocent file named gbfm.png is the culprit.

This file is actually the virus, which ends up on unprotected Android devices through legitimate apps that have been compromised. As of yet, GingerMaster has not appeared on the Android Market, however the malware successfully evaded detection in tests with leading mobile anti-virus software according to the research team at NC State University that discovered the threat.

DroidKungFu was originally found in unauthorized Android apps in the Chinese app market. The virus does the exact same thing as GingerMaster except with earlier versions of Android. So why are GingerMaster and DroidKungFu considered threats?

The malware first gains root access and installs a secret background service that reads your device ID number, phone number and other data. It then uploads this information to a remote server and waits for instructions. Once installed, GingerMaster can download and install apps by itself without the owner's knowledge or permission.

Until countermeasures to GingerMaster can be deployed, be sure to stick with known app stores that are policed for malware and have good reputations. Another way to protect your Android device from infection is to check customer reviews and ratings before installing an app. Also make sure to be wary of apps that ask for too much personal data before installing.