Bood
The Bood Trojan is a threat, which targets Android devices exclusively. This new Android threat appears to work in cooperation with the Cookiethief Trojan. The Cookiethief Trojan serves to collect users’ cookies, namely cookies stored in their Facebook application and Web browser. Users know that cookies tend to be used for marketing purposes, but in some instances, cookies also can be used as an authentication method. The latter is why cybercriminals build cookie collecting Trojans. However, since the Cookiethief Trojan cannot operate on its own, this is why it needs the assistance of the Bood Trojan.
The Bood Trojan serves as a backdoor to the user’s device. This Trojan can fetch and execute commands from the attackers’ C&C (Command & Control) server. So far, the Bood Trojan has not been used for spying purposes, despite being fully capable of doing so. The operators of this threat appear only to use it in unison with the cookie-stealing threat Cookiethief. However, the operators of the Bood Trojan may utilize this threat to deliver far more potent threats in other campaigns in the future.
The Bood Trojan allows the Cookiethief to collect the targeted user’s cookies, which may allow the attackers to gain access to the victim’s Facebook profile. The attackers are likely to use the hijacked social media profiles to propagate various online schemes that would help them generate revenue. It would appear that the Bood Trojan and the Cookiethief threat may be distributed with the help of a fake copy of the popular Roblox video game tailored for Android devices. So far, this bogus copy of the game has only been hosted on third-party application stores.
Users are advised against installing any software from third-party websites hosting content. Crafty malware creators often manage to bypass even the security measures of the official Google Play Store, so small third-party application stores are likely to host a significant amount of unsafe applications. This is why it is best to stick to downloading software from the official Google Play Store only. Also, do not forget to install a genuine anti-malware tool that will protect your Android device from threats like the Bood Trojan.
