View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
November 24, 2014

NotCompatiable.C Android malware hits 4.5 million users

The malware is used to convert the infected system into botnets.

By CBR Staff Writer

Nearly 4.5 million Android users in the US have fallen prey to malware that converts headsets into botnets to send spam, highjack emails and buy event tickets in bulk through the infected systems.

First detected in 2012, the NotCompatible.C bug is in its third iteration in the wild, according to security firm Lookout.

Malicious codes are used to infect websites that are accessed by phones and as the user visits the site, they are prompted to download the malicious codes. This is known as "drive-by download."

The attackers use spam email campaigns disguised as weight loss solutions to make users download the malicious codes.

Attackers had previously sent spam to hijacked email accounts, but this time the hackers are trying to convert the infected systems into bonets to use it according to their requirements.

Lookout said: "At its heart, NotCompatible.C is an unrestricted proxy on a mobile device that offers the operators unfettered access to protected networks to which these devices connect."

"An infected [smartphone] present on an enterprise network would potentially allow attackers to enumerate vulnerable hosts inside the network, exploit vulnerabilities in these hosts and exfiltrate data."

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

The company also noted that the malware is also causing severe battery drainage.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.