Upload
others
View
7
Download
1
Embed Size (px)
Citation preview
Malicious Dialer For Android Smartphones
Team members: Dina Atia, 100020242
Fatma Mohamed, 100020254Mervat Hafez, 100020292
Supervised by: Dr. Hadi Otrok
SECURE ABU DHABI CONFERENCE 2013
Problem Statement• Android is based on kernel Linux • Open Android Market• Unhardened Vulnerabilities (Ex. USSD)
Motivation• Build a new malware that can be hidden inside a well known application.
• Propose unexpected scenarios that can’t be predicted by the user.
SECURE ABU DHABI CONFERENCE 2013
What is the Malicious Android Dialer?
• Dialer Application in Android market.• Detect special sequences and make different actions.
SECURE ABU DHABI CONFERENCE 2013
Malicious Android Dialer Features
• Stealing voucher cards : Du Telecommunication company Detect “*13” Send an Email with the card number when call
button is pressed Add a digit to the card number to make it invalid
SECURE ABU DHABI CONFERENCE 2013
Figure 1: The malicious application is invoked whenever the user is trying to make a call
Figure 2: The malicious application in standby mode
SECURE ABU DHABI CONFERENCE 2013
Figure 2: The user enters the sequence number of the voucher card using our malicious application
Figure 4a: When the sequence is detected:
a) Add a number to card before dialing to have an invalid voucher card
SECURE ABU DHABI CONFERENCE 2013
Figure 4b: When the sequence is detected:
b) Send an email to the attacker with the sequence number
SECURE ABU DHABI CONFERENCE 2013
Malicious Android Dialer Features
• USSD (Unstructured Supplementary Service Data) : Used to exchange information Enclosed between (*) and (#)
SECURE ABU DHABI CONFERENCE 2013
Figure 5: The user enters a phone number starting with “056”
Figure 6: The USSD code is executed when the sequence is detected
SECURE ABU DHABI CONFERENCE 2013
Security Enhancements
• Users should pay attention to the permissions requested by any application
• Consider the comments and reviews by other users
• The market should scan the application before uploading them to the market
• Android manufacturer shouldn’t accept any codes between * and #.
SECURE ABU DHABI CONFERENCE 2013
Concluding Remarks
• Android lacks the security regulations that prevent attackers from designing malwares targeting Android platform.
• There must be a quick solution for the crucial problem of USSD codes
SECURE ABU DHABI CONFERENCE 2013