Agent Smith code is threatening 25 million Android devices

Yesterday, July 10, cybersecurity agencies issued a warning about a malicious software called Agent Smith that is causing about 25 million Android phones to be affected.

This malware can take advantage of the weaknesses of the Android operating system to launch the attack. After entering the device, it will use malicious versions of pre-installed ads to replace apps like Whatsapp.

Agent Smith code is threatening 25 million Android devices Picture 1 Agent Smith code is threatening 25 million Android devices Picture 1

Agent Smith spreads through a third-party app store 9apps.com, owned by Alibaba (China), not from Google Play. Most of the victims of this malware are in India with 15 million affected devices. In the US, there are also 300,000 Android smartphones infected and 137,000 in the UK.

According to security researchers, Agent Smith's harm ability cannot be controlled because it runs underground and does not appear on the phone interface.

Agent Smith code is threatening 25 million Android devices Picture 2 Agent Smith code is threatening 25 million Android devices Picture 2

A typical attack works as follows: When a user accidentally downloads and installs an application that contains a virus, it can be a photo editing, game, or adult application utility. This application will silently install malware, then they are disguised as an official Google update tool. It is very difficult for users to detect anomalies because no icons appear on the Android interface. Fake applications will then replace legitimate applications for hackers to spread ads. When a user accidentally clicks on an ad, hackers will receive money.

Israeli security company Check Point said that Agent Smith was developed by an Guangzhou-based Chinese anonymous company to help Android app developers in the country promote their products on the Internet. overseas platform.

Agent Smith code is threatening 25 million Android devices Picture 3 Agent Smith code is threatening 25 million Android devices Picture 3

Researchers have warned Google, Alibaba and related agencies but have yet to receive a response.

How to detect malicious code Agent Smith

Aviran Hazum, head of Check Point's analytics and feedback division, said that if Android users find ads appear at strange times, for example, when opening WhatsApp, be careful and perform the following operations. here:

Access the settings -> Select Application and notifications -> on the Application information list and check. If there are suspicious applications with names such as Google Installer for U, Google Powers, Google Updater and Google Installer, uninstall now.