The page may not load correctly.
分析不法分子使用的技术可以使我们预测其可能的发展方向,以便更加有效地抵御今后可能遇到的威胁。您也可以了解一下恶意程序如何在被感染的系统中运行以及如何抵御这些程序。
Program.CloudInject virus records are used to detect Android applications that have been modified using the CloudInject cloud service. The apps are modified on a remote server. Using the eponymous utility (detected as Tool.CloudInject by Dr.Web), which has been installed on an Android device, modders (users) upload pre-prepared APK files of the target software or copies of previously installed apps. Then, on the server side, obfuscated code is injected into the target software. Meanwhile the modder cannot control what exactly will be built into the app.
When programs are being modified, a number of dangerous system permissions, the list of which is constantly changing, are added to them. Once the process is complete, users are able to remotely manage modified apps. For instance, they can block them, display custom dialogs (notifications and dialog boxes), use them to track the installation and removal of other software, etc.
据统计,每五个安卓程序中就有一个存在漏洞(换句话说就是带有缺陷),这种漏洞可使不法分子将移动木马成功嵌入设备并执行所需操作。
Dr.Web for Android中的安全审计 对移动设备的安全性做出诊断和分析,发现问题和漏洞是会提示解决方案。
