Incident Details a Report Released by Proofpoint on a Trojanized Version of the Popular Mobile Game Pokemon Go
We have developed TIPpers, which are incidents the ThreatConnect Research team flags for your awareness, so your organization can take decisive action.
TIPper: Infected Pokemon-Go Android Malware
This incident details a report released by Proofpoint on a trojanized version of the popular mobile game Pokemon Go. The app is only available in select countries and due to its immense popularity, many Android users are attempting to download the app via third party sources. This method of downloading and installing unregulated apps can be unsafe as it may lead to downloading malware. It did not take long for adversaries to exploit this fact, and weaponize the popular game. The infected version of the game installs the Droidjack RAT (also known as SandroRAT) to gain control of the victim’s phone.
For additional details, current ThreatConnect users can access this incident by selecting this LINK or search for incident “20160711A” in the ThreatConnect Platform.
If you do not have a ThreatConnect account, click HERE to access our Free Edition as well as 30-day access to our Subscriber Community. ThreatConnect’s Free Edition allows you to establish a basic threat intelligence practice, collaborate with your internal team, protect your organization with open source threat data, bulk import cyberthreat indicators, contribute to the ThreatConnect Community, and receive support and validation from outside researchers and analysts also using the platform. The Subscriber Community includes timely notification of threat incidents identified by the ThreatConnect Research team, an exclusive service offered at no additional charge to paying customers.