A global Android smartphone botnet, which is a group of devices in the network whose control has been compromised spotted by researchers. Terry Zink, an engineer with Forefront Online Security said that he observed that pharmacy spam was coming signed ‘Sent from Yahoo Mail on Android’ through genuine Yahoo accounts. However, Google has downplayed the issue, saying that the hackers may have used fake email signatures to bypass spam-filtering mechanisms.
What has happened here?
Clearly, a spammer has gained control of a worldwide botnet spanning Russia, Indonesia, Chile, Oman, Lebanon, Thailand, Venezuela, Ukraine, Philippines and Saudi Arabia; and logs into their Yahoo accounts and send spam. This was revealed from the embedded IP addresses in the mail spam. Sophos, another security firm, confirmed the research of Zink.
Shielding from spammers
It is most likely that the users of those Android gadgets have been using some malicious apps, which may have been pirated versions of paid Android applications that have been infected with Trojan. Alternatively, maybe they have been using an infected Yahoo mail application on their Android phones. This evidence is being touted as the first instant of verified malware botnets used on the Android platform using compromised subscribers.