{"id":38999,"date":"2023-10-20T15:00:11","date_gmt":"2023-10-20T15:00:11","guid":{"rendered":"http:\/\/startupsmart.test\/2023\/10\/20\/more-than-1-million-phones-infected-in-google-cyber-attack-startupsmart\/"},"modified":"2023-10-20T15:00:11","modified_gmt":"2023-10-20T15:00:11","slug":"more-than-1-million-phones-infected-in-google-cyber-attack-startupsmart","status":"publish","type":"post","link":"https:\/\/www.startupsmart.com.au\/uncategorized\/more-than-1-million-phones-infected-in-google-cyber-attack-startupsmart\/","title":{"rendered":"More than 1 million phones infected in Google cyber attack &#8211; StartupSmart"},"content":{"rendered":"<div class=\"td-post-featured-image\"><img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"332\" itemprop=\"image\" class=\"entry-thumb\" src=\"\/wp-content\/uploads\/2016\/12\/Hacker--640x332.jpg\" alt=\"Hacker\" title=\"Hacker\"\/><\/div>\n<p>One of the largest breaches ever of Google accounts was uncovered on Wednesday, with cyber criminals reportedly infecting more than one million Android phones worldwide, stealing credentials and installing malicious software.<\/p>\n<p><a href=\"http:\/\/blog.checkpoint.com\/2016\/11\/30\/1-million-google-accounts-breached-gooligan\/\" target=\"_blank\" rel=\"noopener noreferrer\">Uncovered by security software company Check Point<\/a>, the attack is dubbed \u201cGooligan\u201d and continues to infect over 13,000 phones every day.<\/p>\n<p>The company believes the breach to be the largest Google account breach to date.<\/p>\n<p><strong><a href=\"http:\/\/www.smartcompany.com.au\/business-advice\/76770-need-know-australias-three-common-cyber-threats\/\" target=\"_blank\" rel=\"noopener noreferrer\">Read more: What you need to know about Australia\u2019s three most common cyber threats<\/a><\/strong><\/p>\n<p>The malware comes from third-party applications installed outside of Google\u2019s Play Store, and only affects phones running on version four and version five of the Android operating system.<\/p>\n<p>The current version of Android is version seven, but due to many manufacturers\u2019 sluggish update schedules, <a href=\"https:\/\/developer.android.com\/about\/dashboards\/index.html\" target=\"_blank\" rel=\"noopener noreferrer\">about 74% of Android users<\/a> are still operating on those older versions.<\/p>\n<p>Once installed, the malware uses an exploit only found in older Android versions, allowing the malicious applications to grant full access to all the phone\u2019s functions, commonly known as \u201croot access\u201d.<\/p>\n<p>Once root access is granted, the malware\u00a0can then access all functions of the user\u2019s Google accounts, including Gmail, Google Docs, Google Photos, and Google Drive.<\/p>\n<p>Check Point notes that \u201chundreds\u201d of the compromised accounts are associated with enterprise accounts.<\/p>\n<p>Alongside gaining this access, the malicious software downloads apps and fraudulently reviews them, gaining revenue from ad services that pay for app reviews.<\/p>\n<p>The device is also infected with \u201cadware\u201d, which displays unwanted advertising to the user, again generating revenue.<\/p>\n<p>Check Point alerted Google to the issue, which responded by removing fraudulently reviewed apps from the Google Play Store, and protecting Google accounts that were compromised.<\/p>\n<p>It is believed that Gooligan is a form of Ghost Push malware\u2014malicious software that Google has been working to eradicate for over two years.<\/p>\n<p>\u201cWe\u2019re appreciative of both Check Point\u2019s research and their partnership as we\u2019ve worked together to understand these issues,\u201d said Adrian Ludwig, Google\u2019s director of Android security in a statement to Check Point.<\/p>\n<p>\u201cAs part of our ongoing efforts to protect users from the Ghost Push family of malware, we\u2019ve taken numerous steps to protect our users and improve the security of the Android ecosystem overall.\u201d<\/p>\n<p>Check Point detected 57% of breaches to have occurred in the Asia region, with 19% occurring in the US.<\/p>\n<p>Users can check if their Google account is compromised by using <a href=\"https:\/\/gooligan.checkpoint.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Check Point\u2019s tool here.<\/a><\/p>\n<h3>Review your cyber security<\/h3>\n<p>Android users are advised to steer clear of apps that are not available in the Google Play Store, and to be wary of suspicious looking links.<\/p>\n<p>And it\u2019s another reminder to SMEs to be vigilant when it comes to cyber security, even for things as simple as updating old and outdated passwords.<\/p>\n<p><a href=\"http:\/\/www.smartcompany.com.au\/technology\/70240-how-mark-zuckerbergs-social-media-accounts-got-hacked-and-how-to-stop-it-happening-to-you\/\" target=\"_blank\" rel=\"noopener noreferrer\">In June this year, Facebook founder Mark Zuckerberg<\/a> had his Twitter account compromised, and it was revealed that his password was \u201cdadada\u201d.<\/p>\n<p>At the time, cyber security expert Michael McKinnon told <em>SmartCompany<\/em> passwords should be at minimum 12 characters in length, have uppercase and lowercase letters, and include at least one digit and symbol.<\/p>\n<p>\u201cIf you can stick to these rules, you\u2019re virtually uncrackable,\u201d McKinnon said.<\/p>\n<p>\u201cIdeally you want a 50-character string of random numbers and letters, but we\u2019re all human and remembering that would be hard.\u201d<\/p>\n<p><em>This article was originally published on <a href=\"http:\/\/www.smartcompany.com.au\/technology\/79633-one-million-google-accounts-infected-malware-largest-google-breach-date\/\" target=\"_blank\" rel=\"noopener noreferrer\">SmartCompany<\/a>.<\/em><\/p>\n<p><em>Follow StartupSmart on<\/em>\u00a0<em><a href=\"https:\/\/www.facebook.com\/StartUpSmart\/\" target=\"_blank\" rel=\"noopener noreferrer\">Facebook<\/a>,<\/em>\u00a0<em><a href=\"https:\/\/twitter.com\/StartupSmartnow\" target=\"_blank\" rel=\"noopener noreferrer\">Twitter<\/a>,\u00a0<a href=\"https:\/\/www.linkedin.com\/company\/startupsmart\" target=\"_blank\" rel=\"noopener noreferrer\">LinkedIn<\/a>\u00a0and <a href=\"https:\/\/itunes.apple.com\/au\/podcast\/starting-change-podcast\/id1154324497?mt=2\" target=\"_blank\" rel=\"noopener noreferrer\">iTunes<\/a>.\u00a0<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>One of the largest breaches ever of Google accounts was uncovered on Wednesday, with cyber criminals reportedly infecting more than<\/p>\n","protected":false},"author":2,"featured_media":61460,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/posts\/38999"}],"collection":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/comments?post=38999"}],"version-history":[{"count":0,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/posts\/38999\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/media\/61460"}],"wp:attachment":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/media?parent=38999"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/categories?post=38999"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/tags?post=38999"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}