{"id":5456,"date":"2018-04-03T00:00:00","date_gmt":"2018-04-03T10:00:00","guid":{"rendered":"https:\/\/hitechhui.flywheelsites.com\/uncategorized\/rottensys-malware-has-infected-5m-android-devices-since-2016\/"},"modified":"2023-05-16T02:20:09","modified_gmt":"2023-05-16T12:20:09","slug":"rottensys-malware-has-infected-5m-android-devices-since-2016","status":"publish","type":"post","link":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/","title":{"rendered":"RottenSys Malware Has Infected 5M Android Devices Since 2016"},"content":{"rendered":"<div class=\"postcontent\">\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-7617 alignleft\" src=\"http:\/\/www.hitechhui.com\/wp-content\/uploads\/2018\/04\/androidXresized.jpg\" alt=\"\" width=\"300\" height=\"225\">There’s a new threat on the horizon, according to security researchers from Check Point. A group of hackers in China are busy building a massive botnet that so far, totals almost five million Android smartphones. The hackers are quietly taking control of these devices using a strain of malware known as “RottenSys.”<\/p>\n<p>While the malware is flexible and can be adapted to any number of purposes, in its present incarnation, it’s being used to display copious numbers of advertisements. This generates a healthy revenue stream for the hackers, but that could be just the beginning. The researchers have found evidence that the hackers are gearing up for a campaign that could be much more far-reaching and damaging. According to Check Point: “This botnet will have extensive capabilities, including silently installing additional apps and UI automation.”<\/p>\n<p>RottenSys is fairly new to the malware ecosystem, first appearing in September 2016. So far, the hackers have spent most of their time simply spreading their creation to more devices. At current count, the number of infected Android phones stands at 4,964,460, and it grows by the day.<\/p>\n<p>It wasn’t until last month that RottenSys got an update that gave its owners the ability to take direct control of all the devices. Prior to that, they were happy to simply rake in ad revenue, which is estimated to exceed $350,000 a month.<\/p>\n<p>Currently, the malware hasn’t spread beyond the confines of China, but that could easily change as the hackers seek to add an increasing number of devices to their already massive botnet.<\/p>\n<p>What makes RottenSys notable is the fact that it has managed to spread to so many devices in such a short period of time. As it turns out, the secret to the hackers’ success has to do with the code it’s built around, which includes both “Small”, (an open source virtualization framework) and “MarsDaemon”, which is a library that keeps apps “undead,” which ensures that the malware’s processes continue to operate even after users close them. This ensures that the ad-injection capacity cannot be disabled.<\/p>\n<p>Only time will tell what the hackers have planned, but it can’t be anything good. They’ll have a formidable botnet to do damage with. Stay tuned.<\/p>\n<p><a href=\"http:\/\/sitesdev.net\/articles\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/\" rel=\"nofollow noopener\" target=\"_blank\">Used with permission from Article Aggregator<\/a><\/p>\n<p id=\"post-admin\">\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>There’s a new threat on the horizon, according to security researchers from Check Point. A group of hackers in China are busy building a massive botnet that so far, totals […]\n","protected":false},"author":5,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-5456","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.0 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>RottenSys Malware Has Infected 5M Android Devices Since 2016 - Hi Tech Hui<\/title>\n<meta name=\"description\" content=\"There's a new threat on the horizon, according to security researchers from Check Point.\u00a0 A group of hackers in China are busy building a massive b...\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"RottenSys Malware Has Infected 5M Android Devices Since 2016 - Hi Tech Hui\" \/>\n<meta property=\"og:description\" content=\"There's a new threat on the horizon, according to security researchers from Check Point.\u00a0 A group of hackers in China are busy building a massive b...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/\" \/>\n<meta property=\"og:site_name\" content=\"Hi Tech Hui\" \/>\n<meta property=\"article:published_time\" content=\"2018-04-03T10:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-16T12:20:09+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/www.hitechhui.com\/wp-content\/uploads\/2018\/04\/androidXresized.jpg\" \/>\n<meta name=\"author\" content=\"Hi Tech Hui\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Hi Tech Hui\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/\",\"url\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/\",\"name\":\"RottenSys Malware Has Infected 5M Android Devices Since 2016 - Hi Tech Hui\",\"isPartOf\":{\"@id\":\"https:\/\/www.hitechhui.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/www.hitechhui.com\/wp-content\/uploads\/2018\/04\/androidXresized.jpg\",\"datePublished\":\"2018-04-03T10:00:00+00:00\",\"dateModified\":\"2023-05-16T12:20:09+00:00\",\"author\":{\"@id\":\"https:\/\/www.hitechhui.com\/#\/schema\/person\/93733ae95470a2e979146f3efe08de1f\"},\"description\":\"There's a new threat on the horizon, according to security researchers from Check Point.\u00a0 A group of hackers in China are busy building a massive b...\",\"breadcrumb\":{\"@id\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#primaryimage\",\"url\":\"\",\"contentUrl\":\"\",\"width\":300,\"height\":225},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.hitechhui.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"RottenSys Malware Has Infected 5M Android Devices Since 2016\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.hitechhui.com\/#website\",\"url\":\"https:\/\/www.hitechhui.com\/\",\"name\":\"Hi Tech Hui\",\"description\":\"Hawaii's #1 Cybersecurity & IT Experts\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.hitechhui.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.hitechhui.com\/#\/schema\/person\/93733ae95470a2e979146f3efe08de1f\",\"name\":\"Hi Tech Hui\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.hitechhui.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/4be5466b9eae294c65773e7a372d8b4b?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/4be5466b9eae294c65773e7a372d8b4b?s=96&d=mm&r=g\",\"caption\":\"Hi Tech Hui\"},\"url\":\"https:\/\/www.hitechhui.com\/author\/hi-tech-hui\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"RottenSys Malware Has Infected 5M Android Devices Since 2016 - Hi Tech Hui","description":"There's a new threat on the horizon, according to security researchers from Check Point.\u00a0 A group of hackers in China are busy building a massive b...","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/","og_locale":"en_US","og_type":"article","og_title":"RottenSys Malware Has Infected 5M Android Devices Since 2016 - Hi Tech Hui","og_description":"There's a new threat on the horizon, according to security researchers from Check Point.\u00a0 A group of hackers in China are busy building a massive b...","og_url":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/","og_site_name":"Hi Tech Hui","article_published_time":"2018-04-03T10:00:00+00:00","article_modified_time":"2023-05-16T12:20:09+00:00","og_image":[{"url":"http:\/\/www.hitechhui.com\/wp-content\/uploads\/2018\/04\/androidXresized.jpg","type":"","width":"","height":""}],"author":"Hi Tech Hui","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Hi Tech Hui","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/","url":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/","name":"RottenSys Malware Has Infected 5M Android Devices Since 2016 - Hi Tech Hui","isPartOf":{"@id":"https:\/\/www.hitechhui.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#primaryimage"},"image":{"@id":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#primaryimage"},"thumbnailUrl":"http:\/\/www.hitechhui.com\/wp-content\/uploads\/2018\/04\/androidXresized.jpg","datePublished":"2018-04-03T10:00:00+00:00","dateModified":"2023-05-16T12:20:09+00:00","author":{"@id":"https:\/\/www.hitechhui.com\/#\/schema\/person\/93733ae95470a2e979146f3efe08de1f"},"description":"There's a new threat on the horizon, according to security researchers from Check Point.\u00a0 A group of hackers in China are busy building a massive b...","breadcrumb":{"@id":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#primaryimage","url":"","contentUrl":"","width":300,"height":225},{"@type":"BreadcrumbList","@id":"https:\/\/www.hitechhui.com\/2018\/04\/03\/rottensys-malware-has-infected-5m-android-devices-since-2016\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.hitechhui.com\/"},{"@type":"ListItem","position":2,"name":"RottenSys Malware Has Infected 5M Android Devices Since 2016"}]},{"@type":"WebSite","@id":"https:\/\/www.hitechhui.com\/#website","url":"https:\/\/www.hitechhui.com\/","name":"Hi Tech Hui","description":"Hawaii's #1 Cybersecurity & IT Experts","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.hitechhui.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.hitechhui.com\/#\/schema\/person\/93733ae95470a2e979146f3efe08de1f","name":"Hi Tech Hui","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.hitechhui.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/4be5466b9eae294c65773e7a372d8b4b?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4be5466b9eae294c65773e7a372d8b4b?s=96&d=mm&r=g","caption":"Hi Tech Hui"},"url":"https:\/\/www.hitechhui.com\/author\/hi-tech-hui\/"}]}},"_links":{"self":[{"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/posts\/5456"}],"collection":[{"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/comments?post=5456"}],"version-history":[{"count":0,"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/posts\/5456\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/media?parent=5456"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/categories?post=5456"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.hitechhui.com\/wp-json\/wp\/v2\/tags?post=5456"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}