On January 22, Kaspersky discovered something that could wreak havoc on your mobile device and PC, but not in the way you would normally think. Usually, it's the PC that infects the phone, however, this time, it's the other way around. Through a "cleaner" app that promises to free up memory, the malware actually turns out to be "one of the most 'extensive feature set' it [the security company] has ever seen in one mobile app" with the following list:

  • Sending SMS messages.
  • Enabling Wi-Fi.
  • Gathering information about the device.
  • Opening arbitrary links in a browser.
  • Uploading the SD card’s entire contents.
  • Uploading an arbitrary file (or folder) to the master’s server.
  • Uploading all SMS messages.
  • Deleting all SMS messages.
  • Uploading all the contacts/photos/coordinates from the device to the master.

If installed and executed on Android, the "app" pretends to run and fulfill certain tasks while downloading three files (autorun.inf, folder.ico, and svchosts.exe) to the root of your SD card. Therefore, when your device is connected to a Windows computer, it can damage your PC as well. And that's not all, there is also a possibility that the malware can take control of the microphone and record whatever you say, encrypt it and send them back to the attacker. Crazy, right? Now, don't say we didn't warn you

[via TNW]