Why you shouldnt be a pirate..
"A bit of malware that could allow hackers to control victims' phones is making its way around Android handsets. A Trojan called "Geinimi" apparently is able to sneak into Android phones by way of pirated apps available through third-party China-based Android apps stores. It appears the original versions of the malware-riddled apps are not infected."
A new Trojan that can create botnets has emerged in China, according to Lookout Mobile Security.
This Trojan, dubbed "Geinimi," is the most sophisticated Android malware so far, the company said.
Once it's installed on a user's phone, Geinimi can receive commands from a remote server that lets that server's owner control the smartphone.
Geinimi is apparently being spread through pirated versions of legitimate Android apps, mainly games, and is being distributed in third-party Android app stores in China.
How Geinimi Works
When a smartphone user launches an infected application containing Geinimi, the Trojan collects information in the background.
This information includes location coordinates and unique identifiers for the device and its SIM card, Lookout Mobile said.
Every five minutes, the Trojan tries to connect to a remote server using one of 10 embedded domain names. These domain names include www.widifu.com; www.udaore.com; www.frijd.com; www.islpast.com and www.piajesj.com, according to the security company.
If Geinimi manages to connect to the remote server, it will upload information it collected. The Trojan also prompts the user to uninstall an app, and it sends a list of installed apps to the remote server, Lookout Mobile said.
The malware's creators have used an off-the-shelf bytecode obfuscator to hide the code and have encrypted some of the command-and-control data. This data comes into play when the Trojan connects back from a victim's smartphone to the remote server.
Where the Virus Lurks
Pirated applications that include the Trojan that are available in Chinese app stores include "Monkey Jump 2;" "Sex Positions;" "President vs. Aliens;" "City Defense;" and "Baseball Superstars 2010," Lookout Mobile said.
However the original versions of these apps that are in the official Google (Nasdaq: GOOG) Android Market have not been affected, Lookout Mobile said.
"The Trojan is an add-on, so it could be uploaded to any app on the Android Market, but so far the infected apps have only shown up in the Chinese app markets," Kevin Mahaffey, chief technology officer at Lookout Mobile, told TechNewsWorld.
"We contacted the developers, and they didn't know this was going on or that their games were being pirated," Mahaffey added.
Green Isn't Always Good
"We see the exact same thing with software for Windows in China all the time," Chester Wisniewski, a senior security adviser at Sophos, told TechNewsWorld.
"The malware authors convert legitimate Windows apps into adware and offer it for free, and it wouldn't surprise me if they took the same approach with Android," Wisniewski explained. "There's a term in Chinese that translates to something like 'green software,' and that refers to pirated versions of software."
About 80 percent of so-called green software on websites in China contain malware, Wisniewski said.
No Sailing the 7 Seas Yet
Geinimi was discovered on a user forum in China, Lookout Mobile's Mahaffey said.
While the malware currently affects only users in China, it could well spread elsewhere.
"Mobile devices have a fairly international user base, and there's a lot of cross-pollination of apps," Mahaffey pointed out. "But so far, the market is still localized."
Google can easily prevent the spread of the Trojan by kicking the app off Android, Randy Abrams, director of technical education at ESET, pointed out. "Why hasn't Google done anything yet?" he asked.
Google didn't respond to requests for comment by press time.
A Smartphone Is Not Just a Phone
Smartphone users need to realize that their devices are "really powerful little computers," ESET's Abrams told TechNewsWorld.
For example, Android-based smartphones can be used to launch distributed denial of service (DDoS) attacks against websites, Abrams said.
"Right now, people are constantly installing apps that tell you they will access the Internet, or send and receive text messages, or send and receive email," Abrams pointed out. "These apps are paid for by advertising . The Trojan takes things one step further in that it can create a botnet. But in terms of giving up privacy, people are already doing that by installing free games and apps."
Android offers users two types of protection, Lookout Mobile's Mahaffey said. One is that the apps users download must ask for permission if they want to access any of the operating system's features.
The other type of protection blocks sideloading, which is the technical term for users downloading apps from unknown sources. In order to download pirated apps, which may contain the Geinimi Trojan, Android smartphone owners need to turn off sideloading protection, Mahaffey said.
That's exactly what they shouldn't do; after all, they don't turn antivirus off on their PCs before downloading applications.
"Treat your smartphone like you would your PC, and make sure that all the things you safeguard on your PC you safeguard on your smartphone," Mahaffey stated.
By Richard Adhikari
[SPOILER= Did I come off like a jerk?? Read more here]Shift_Lock On Forum Issues - Vol. 1
First I would like to state that this is one persons point of view. It does not reflect this site (wiihacks.com) or any other staff/mod/or admin here. It is solely mine. Now even though a few may have similar points of view this should be taken as one person’s opinion. Also. This DOES NOT reflect all users and noobs here.. Just a select few personality types that pop in time to time. Let’s get started!
[SPOILER="Outlook On Forum Rules "]Now I realize many of you did not even read the rules and just agreed to them.. Kind of like signing a legal contract without reading the clause that states you just sold your life away… It happens... When it does, YOU are still responsible and held liable for your actions. No matter how much you think its BS... It’s still on you. I for one am among those who did just that when I signed up here... (Shame on me I know) I to did not read them immediately (however I did speed through it to get a general idea)... I was quickly referred to them a few times do to not being thorough enough with “speed reading”...
[SPOILER="Why we have rules on this site"]The rules here at wiihacks are here for a few key reasons. I’m only going to hit a few.
Conduct - We know it’s the net, and there are a lot of internet gangsters/bully’s/and plain jack ass’s... We don’t like that here. The ways users conduct themselves reflect the site... We want user to enjoy coming here but respect in general is needed. Flaming and such results in infractions/bans so don’t do it.
Piracy – This is a big one here, and no one seems to understand... First of all IT IS AGAINST THE RULES OF THE SITE! Which every last one of you members had to agree to follow prior to being a member here. Copyright laws vary from place to place so they are different for others. But we have to follow our copy rights here to protect our site. We DO NOT support piracy and will not assist in it. We don’t want to lose our wonderful site that you as a user come to, to find help. Big brother (the government) and big “N” (Nintendo) may be watching along with a vast amount of other private sectors looking to stop the pirating of copy righted material. Shutting down sites that support it are somewhere at the top of the list to reduce this.
Personally, I don’t care what you do... I don’t care what your online habits are or how much porn/software/media you download every day. It’s your computer and your life. YOU are responsible for anything that may occur from that. Users who lack a way with words to express themselves in what they are trying to do may get wrongly accused of being a pirate and these things occur: warnings/infractions/bans/threads closed/YouTube videos of dancing pirates/ and many many possible pictures pointing you out.
We as staff here are obligated to abide by and enforce forum rules. Whether we believe their valid or not. They are in place to protect the site and members of our community. I won’t allow a poor decision result in losing this site.
Cheating – Play Fair... I support it... Nothing I hate more than losing to a cheater... If I lose I want it to be because the other person was actually better. Cheating takes the fun out of the game... Why make it easier? Do you suck that bad at it? Don’t like the challenge? GET A DIFFERENT GAME! We don’t support cheats here. Users will not be given help on how to become invincible or walk through walls... you want god mode? Unlimited ammo? Go Google it somewhere else. Don’t ask about it here.[/SPOILER]
There are a lot of users/members that say “this is wiihacks wtf?” or "that’s the point in hacking a Wii”... No it is not….. We assist users in backing up their legally purchased games so they don’t get ruined in the future (we know how kids are)... Before backups I had bought 3 Mario karts! Ridiculous… Anyways, it also allows us to fully enjoy the console and the convenience that some mods add to the system. We make it custom and set it up the way we like it. Kind of like your pc. A lot of users buy the Wii just so they can do that! I will ban anyone who tries to argue that point... Dont be ignorant... [/SPOILER]
[SPOILER= “So you Think You’re a Hacker”]Warning: Spoiler below is a rant. [SPOILER= "Shift_Lock's Rant about the tough guys"]Really guy? We are “Modder’s” at best... most users aren’t even that. A hacker would shut down this site with a single code line… Not sit here claiming he’s one arguing about rules and why he needed help... I’m not saying we don’t have members that are real “hackers” but face it... You aren’t one of them... Coders and developers are fantastic people that make all this possible. And some of those guys truly are considered hackers at some level. Now, could they hack the pentagon? Probably not, but maybe. Who knows... lol
The point of this is for those of you that come on here thinkin you’re hot [nice word]... If you were a hacker you wouldn’t need our help and wouldn’t need to hide behind a proxy or redirect to post your nonsense… Get over yourself and just follow our guides. If you can’t “hack” a Wii, what can you do? Can you hit the logout button? Try It! How about facing your fail and going back to the guides to read some more… Leave the “hacking” to the REAL hackers out there. /end rant[/SPOILER][/SPOILER]
[SPOILER= “Need Help?”] That’s why you’re here right? To get help Modding your Wii. Some users can just navigate the site and never need to post a thing because they can search, read and are on some level tech savvy. Other users need assistance. That’s why we are here... To support and assist those who need the help to mod or to help find solutions to their problems. We like to help… but... We don’t always like to spoon feed arrogant people who demand help or can’t use the search function... If our search is too hard to use there is Google, and if you can’t use Google then you SHOULD NOT mod your Wii...
We see the same issues every day, same posts, same questions, same answers…. SEARCH FIRST!!! Read a little… Geez people! Too lazy to search for a solution, but can type a wall of text that takes 15 mins to read? C’mon man… step up your game... My spoon hand is getting tired, gonna have to just start [nice word] slapping people with it…
Don’t be lazy... Help us, help you... If you’re really stuck then we take no issue helping as long as it’s within the lines of the rules... The “grey” area is kind of tough... The staff is here on OUR own time and do not get ANYTHING for being here helping you... We are not paid and don’t see any part of the donations... The donations go strictly to site development. Can you fathom how much it costs to run a site of this level and host the files that we do? Everything costs money... Just not the staff here so remember that the next time you are impatient or lazy... We aren’t getting paid... We are helping because we want to... So keep your cool and dont lose your head... Don’t give us reasons to NOT help you. If you do, well... Then we won’t...[/SPOILER]
[SPOILER= "Mutli Threads, Double Posts and bumping"]Ok.. So It might not bother you but it bugs the crap outta me! It clutters the forum and makes you come off as impatient and ungrateful.
Mutli threads - Do you really need more then one?? Mods and staff see EVERY POST MADE! You only need one thread for your issue.. Dont create more then that..
Double posts - You have an "EDIT" button... it will be right under your post to the right.. it will say "EDIT".. say it with me now.. "Eh-d-it" ...... Use IT!!!
Bumping - If no one has got to you yet there IS a slim chance it was missed.. probably not.. As we answer what we know. so if we dont know, We will leave it for someone else or atleast contact another Staff member for assistance. So WAIT and be PATIENT!You can bumpAFTER 24hrs! and that it!!! I will infract/ban/scold/kick your dog/delete any users who abuse this after warnings....[/SPOILER]
More to come (without a doubt) so stay tuned for the next edition! Peace I’m out![/SPOILER]