Skip to main content

New Android virus poses as an Adobe Flash Player update

android flash trojan 61435934 ml
Dennizn / 123RF
If you use an Android device and happen upon an update for Adobe Flash player, you’d best not download it. A new strain of malware posing as an innocuous software upgrade is spreading like wildfire via social media and compromised websites.

It looks legitimate enough to fool, at first. A malicious link directs unwitting users to a download page that instructs you to “upgrade” Adobe Flash, a browser plugin designed to run multimedia games and apps on the web. In truth, it downloads a malicious application called “Android/TrojanDownloader.Agent.Jl”.

Recommended Videos

A second message, which appears after several seconds has elapsed, falsely warns users that their device’s battery-saving mode has been disabled, and prompts them to toggle a switch to enable it again. Users who do so are redirected to the Android Accessibility settings page, where the malware overlays a fake “Saving Battery” option.

Please enable Javascript to view this content

If the fake option is toggled, the malware’s effectively granted permission to monitor actions, retrieve window content, and turn on device features at will. It will contact a remote server, sending the compromised device’s details and initiating the download of more apps, adware, and even spyware.

The damage can be difficult to undo. A false device lock screen prevents users from uninstalling the app. And even if it’s bypassed, removing the trojan from the Settings menu doesn’t remove any apps it installed surreptitiously.

Lukas Stefanko, an ESET malware researcher, told Neowin the best way to remove the trojan is to use a mobile security solution.

The best way to protect yourself is to avoid downloading and installing suspicious files from the internet. The malware’s references to Flash Player should be a tip off, too — Adobe discontinued support for the plugin on Android as a result of stability and security concerns.

The malware’s far from the first of its kind. “Gooligan,” an app which which can steal your Gmail account and authentication information, install apps from the Google Play store, rate them without consent, and install adware, infected more than one million devices last year. Another, “Humingbad,” which fraudulently injects third-party ads into applications, was detected on as many as ten million devices in July 2016.

Luckily, Google’s taking charge. At the recent RSA security conference in San Francisco on Wednesday, the search giant announced that Verify Apps, an Android security feature which automatically scans devices for viruses and malware, checked more than 750 million Android devices each day last year. And Google said it’s working with 351 wireless carriers to improve the time it takes to test security patches before deploying them to users.

Kyle Wiggers
Former Digital Trends Contributor
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
Motorola adds new features to Razr’s outer display with Android 10 update
motorola razr outer display gets a whole lot more useful  android 10

Motorola’s foldable Razr phone launched in 2020 with Android 9 Pie, leaving many customers scratching their heads as to why it didn’t go with the latest version of the mobile operating system, Android 10, which landed five months earlier.

Well, the head-scratching can now stop as Android’s latest operating system has finally arrived for the Razr in a long-awaited development that adds some subtle enhancements to the pricey device.

Read more
Google Photos is getting a cool new feature to speed up your photo edits
Google Photos' year in review feature for 2024.

Google Photos for Android is introducing a new feature that simplifies photo editing right before sharing. A tipster from Android Authority first reported this tool.

The new “Quick Edit” tool lets users easily enhance or crop individual photos before sharing them. It features an “Enhance” button, which functions similarly to the “Enhance” effect in the standard photo-editing options. A crop button is also similar to the one in the regular photo editor. When multiple photos are selected before hitting the share button, the typical share sheet appears instead of the new “Quick Edit” screen.

Read more
The base model Galaxy S25 will get a RAM upgrade we’ve waited years for
Someone holding the Samsung Galaxy S24 with the display turned on.

Back in November, we heard rumors that the Samsung Galaxy S25 might come with an upgraded amount of RAM compared to the base Galaxy S24. The Galaxy S24 Plus and S24 Ultra both start with 12GB of RAM minimum, but until now, the majority of base-model Samsung handsets only had 8GB.

Abhishek Yadav, a known leaker, shared a post on X that said the base storage variant of the Galaxy S25 would come with 12GB of RAM. This also implies that the base storage is likely to be 256GB too. As apps, operating systems, and integrated AI become more powerful, so do their technical requirements. A bump to the base amount of RAM and storage will yield improved performance (hopefully) without a significant cost increase.

Read more