A report by Check Point Software Technologies reveals a "new and alarming malware campaign" dubbed as "#Gooligan". The security flaw is being seen as the largest attack on Android-powered devices all over the world. Hackers behind Gooligan are believed to have raided more than a million #Google accounts. Every day, the malware is spreading to 13,000 new Android devices.

How does Gooligan attack Android devices?

One of the primary sources through which the malware is reaching devices are the apps installed from sources other than the Play Store. Not just apps, the malware is also being transmitted through phishing campaigns and web links.

Advertisements
Advertisements

As soon as the malware gets access to the device, it sets up a module that transports user's local data and information. Among the stolen information, the malware takes over Google account with password-free access to Google Photos, Google Drive, Google Play Store, and much more.

Check Point's report also states,"The group also noted that it "found traces of the Gooligan malware code in dozens of legitimate-looking apps on third-party Android app stores. These stores are an attractive alternative to Google Play because many of their apps are free, or offer free versions of paid apps."

Gooligan malware could be tagged as the most efficient security intrusion as it steals authentication tokens that can bypass Google's security checkpoints. Even Google's two-factor authentication fails to stop the attack as the malware shows the user as already logged-in.

Advertisements

Check Point's report shows that 57 percent of affected Android devices are in Asia, 19 percent in the United States of America, and 9 percent in Europe. The report also states that Android 4.0 Jelly Bean and Android 5.0 Lollipop are the most vulnerable Android versions. It is noteworthy to point out that as per Google's data, 74 percent of total Android devices are still running Android 4.0 and Android 5.0 versions.

Recently, even Google's latest smartphone - Pixel was under the scrutiny of being vulnerable to security attacks.

How to check your Android device's security?

To protect your device, Check Point says,"we recommend powering off your device and approaching a certified technician, or your mobile service provider, to request that your device is re-flashed."

Check Point has also created a dedicated website to allow users to check the vulnerability of their Android device. We expect Google to take stiff actions via updates or any other means to protect the devices from Gooligan malware. Stay tuned with us for more information on Gooligan.