Trend Micro, a security intelligence agency, recently announced their discovery of a new form of malware, dubbed Godless, which can exploit any Android smartphone device not running on the latest software—specifically, those devices using 5.1 Lollipop or earlier. This malware can overtake the infected device, performing a number of illicit behaviors such as downloading unwanted applications and even spying on users.
Over 850,000 devices worldwide are currently infected with Godless, which has been linked to malicious apps in popular app stores like Google Play. The majority of those infected are in developing nations where third party stores are not monitored as heavily; however, the threat is still real for nearly all Android smartphone users. According to Android, only 10% of smartphones are running the latest software (Android 6.0 Marshmallow), meaning 90% of Android users are susceptible to this infection.
Whether or not you provide your personnel with smartphones, any Android device running outdated software that is connected to your network could place your company data at risk. Follow these suggested practices for protecting your Android smartphone:
- Avoid downloading or updating apps outside of the Google Play Store.
- Only download apps from developers you trust.
- Review any developers you don’t recognize. Unknown developers may be the source of Godless and other malicious software.
- Install anti-virus software and updated it regularly.
- Update to Android 6.0 Marshmallow if you can.
For more information on ways to reduce the risk of a malware attack, visit the Cyber Threats section of your portal or contact your Customer Success representative.