Privilege escalation attacks on android
ISC'10 Proceedings of the 13th international conference on Information security
A SMS-based mobile Botnet using flooding algorithm
WISTP'11 Proceedings of the 5th IFIP WG 11.2 international conference on Information security theory and practice: security and privacy of mobile devices in wireless communication
Hi-index | 0.00 |
In this paper, we present an SMS-based Android botnet. Since all mobile phones have SMS services as a feature, we will use SMS as the medium of propagation of Command and Control messages between the botnet controller and the victim devices. The malicious application presents itself as a regular SMS messaging application and uses the basic permissions needed to send/receive short messages. Previous work done in this area focused on the topology and the medium used to exchange Command and Control messages. In this work, we take advantage of several features of the Android operating system that would allow for the development and deployment of a malicious application that constitutes the basic building block of the botnet. We demonstrate how this application and the associated botnet can have a drastic impact on SMS voting, Premium SMS services, and credit transfer.