Android Trojan Malware (NotCompatible)

Spider

Administrator
Staff member
Mar 24, 2011
15,785
1,813
by Edrea de Sousa | Wednesday, 09th May 2012 |

Android users need to watch out for a trojan called NotCompatible that comes on Android phones as an update file (Update.apk). A user on Reddit called georgiabiker had initially posted about it. On being installed, it is claimed that the malware may use your device as a proxy and gain access to private networks.

If you have the following setting selected on your Android phone, you are susceptible to the risk.

Settings>Applications>Unknown Sources

This setting allows you to download Android apps from unofficial sources. If you visit any infected unofficial sites, it automatically begins downloading an update named com.Security.Update onto your machine. There is no clear record on which sites this file may be found. But Lookout has indicated that it has found the malware on “numerous” websites embedded in an iframe (the part that usually displays advertisments from third parties).

As per Lookout,
“The first time hacked websites are being used to specifically target mobile devices. In this specific attack, if a user visits a compromised website from an Android device, their Web browser will automatically begin downloading an application—this process is commonly referred to as a drive-by download”

You can avoid this malware by staying alert and keeping your antivirus updated. Watch out for automatic downloads of update.apk on your android device.
 
Top