Fake CODE4HK Mobile Application Attack

Last Update Date: 3 Oct 2014 Release Date: 18 Sep 2014 4904 Views

RISK: Medium Risk

Medium Risk

TYPE: Attacks - Malware

TYPE: Malware

A fake mobile application named CODE4HK claiming to coordinating the Occupy Central pro-democracy movement has circulated online since 16 Sep 2014.

 

Malicious behaviours were identified in a fake CODE4HK mobile application, which can cause information disclosure.

 

[UPDATE 2014-10-03]

A security company discovered an iOS spyware called Xsser, which was related to fake CODE4HK attack campaign. The researcher mentioned that he had not uncovered information regarding the method or vector of attack. The spyware needs to install on a jailbroken iOS device with Cydia app.

Impact

  • Information Disclosure

System / Technologies affected

  • Android 4.x and prior
  • [UPDATE 2014-10-03] Jailbroken iOS with Cydia app installed

Solutions

Removal for Android

  1. Go to Settings > Apps on the device
  2. Find "code4hk" in the Downloaded list
  3. Click on "code4hk" to the App info
  4. Click "Uninstall"

Prevention for Android

  • Do NOT install application file (*.apk) from unknown source
  • Disable "Unknown sources" option in the Settings > Security on the device

[UPDATE 2014-10-03] Removal for iOS

  • Reset and Erase iOS device

[UPDATE 2014-10-03] Prevention for iOS

  • Do NOT jailbreak iOS device
  • Do NOT install application from unknown source

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Beware of Web defacement attacks targeting Hong Kong

2 Oct 2014 7102 Views

Next

Apache HTTP Server mod_cache Denial of Service Vulnerability

7 Oct 2014 4243 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY