Google Cloud Messaging Service Utilized by Mischievous Android Malware

The Android playing field obviously has a few issues that need smoothing out before they enter into the 9th inning with an advantage over their competition. Malicious Android apps are plentiful, and the latest ill-fated app to grace the Google Play store is one utilizing Google Cloud Messaging (GCM) as a replacement for command and control servers.

Just like an aggressive botnet infecting a multitude of PCs causing them to all await instructions from a command and control server, new Android malware is able to infect devices running the popular operating system by simply registering it on the Google service landing a place in line at the Google Play store.

Researchers from firms like Kaspersky Lab have found multiple malware samples using GCM where the malware is able to send text messages, steal messages and contacts, show bogus notifications and create shortcuts to random and potentially malicious sites.

Smartphone devices with a small mix of other tablets running Android have dominated the mobile market. Circulating the vast Android market is a plethora of malware apps available not only through 3rd party sources on the Internet, but some have found their way to the Google Play store utilizing GCM.

One particular Trojan recently identified by researchers, dubbed SMS.AndroidOS.OpFake.a, uses GCM in a malicious fashion helping keep itself hidden to avoid raising any red flags and gets its place in the Google Play store as an 'approved' Android app. The method of utilizing a GCM ID within an app makes it easier evade detection and ultimately infect a vast amount of Android devices whose users trust the source of downloading the app.

It is possible that new methods for spreading Android malware has allowed it to increase six-fold just from March to June of this year according to two recent reports issued by Trend Micro. That 40% increase in Android malware is, unfortunately, no fluke while it serves as a staunch reality of the epidemic we face.