Lookout Mobile
has detected what it believes is the first time websites have been aimed at mobile devices to distribute malware.
This type of attack, or a drive-by download, happens on a website infected with malware. The website triggers a malware download simply by being loaded. It often does not prompt you like other downloads, and instead quietly downloads the virus in the background. These are dangerous as the user is left unaware, and thus doesn’t clean up the malware. According to Lookout Mobile, which makes mobile anti-virus software, this is the first they’ve seen website facilitating malware downloads to targeted mobile phones, specifically Androids.
The trojan is called NotCompatible and is executed when an Android browser accesses an infected website. The website has a small iFrame installed, which opens a separate webpage. This webpage then downloads an application to the Android phone. The application will disguise itself as a security update and prompt the user to install it. If successfully installed, the trojan gains access to your system. Thus far it doesn’t Lookout says NotCompatible doesn’t actually disrupt your phone or collect any data. Instead, it has the capability of entering private networks your phone may be connected to. This may be the case for enterprise and government employees.
Researchers expect this hasn’t affected many Android users, as the websites don’t seem to be getting a lot of traffic. Thus far Lookout has identified 10 infected websites including, gaoanalitics.info and androidonlinefix.info
Read more: http://venturebeat.com/2012/05/02/malware-drive-by-download-attack/
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072){kind=avatar}