Godless' Android malware affects almost half of India's smartphone users: report

A new report by IT security company Trend Micro has revealed a new dangerous mobile malware, which has a set of rooting exploits, capable of targeting any Android 5.1 (Lolipop) or earlier devices.

The malware, dubbed ‘Godless’, hides inside an app and uses exploits to try to root the OS on a user’s phone. This not only gives administrator access to a device but also allows it to run unauthorized apps.

Another newer version can also bypass security checks at app stores such as Google Play. The report also said that the malware is ‘tricky’ to uninstall after it has completed the rooting process.

The security firm also pointed out that it has detected the presence of this malware code in numerous Google Play Store apps. Some of these are utility apps such as flashlights apps, Wi-Fi apps, and even games.

Moreover, some apps are clean but have a corresponding malicious version that shares the same developer certificate. However, if when users update the clean version of the app, it might be later upgraded to a malicious version.

The danger, however, looms when users upgrade the clean version of the to the malicious version without them knowing.

So far, Trend Micro has seen 850,000 affected devices, with almost half in India (46.19 per cent) and more in other Southeast Asian countries.

Less than 2 percent were in the US. The malware is even more dangerous due to the large number of Android Lollipop or lower OS-based apps (90 per cent) globally.

"When downloading apps, regardless if it’s a utility tool or a popular game, users should always review the developer. Unknown developers with very little or no background information may be the source of these malicious apps. It's also best to download apps from trusted stores such as Google Play and Amazon. Users should also have secure mobile security that can mitigate mobile malware," Mr. Nilesh Jain, Country Manager- (India and SAARC), Trend Micro said.