- How to check if Yahoo owes you $358 5 Years Ago
- How to stream Bears vs. Redskins on Monday Night Football Today 7:00 AM
- What are the best alternatives to the electoral college? Today 6:30 AM
- The best PS4 games you can’t play anywhere else Today 6:00 AM
- How to watch the 2019 Emmy Awards Today 5:00 AM
- How to stream ‘Power’ season 6, episode 5 Today 4:00 AM
- Former developer at software company deletes his code to protest its ties to ICE Saturday 4:21 PM
- A mysterious website is doxing Hong Kong protesters and journalists Saturday 1:44 PM
- The best ‘Skyrim’ followers and how to get them Saturday 1:26 PM
- Why Joel Osteen gets cyberbullied every time Houston floods Saturday 12:40 PM
- How to stream Jets vs. Patriots in Week 3 Saturday 12:39 PM
- 10 indie dating simulator games you should be playing Saturday 12:31 PM
- How to stream Packers vs. Broncos in Week 3 Saturday 12:14 PM
- Saudi crown prince’s former adviser suspended from Twitter Saturday 11:57 AM
- How to stream Cowboys vs. Dolphins in Week 3 Saturday 11:57 AM
New Android malware called ‘PowerOffHijack’ can secretly commandeer your phone
Just another reason to run an anti-virus app on your phone.
A sinister new sinister bug hitting Android devices is capable of making calls, sending messages, and taking pictures, all while the phone appears to be off.
According to a report from the security research firm (and anti-malware software publisher) AVG, the malware—called PowerOffHijack—presents a fake dialogue box that prompts the user to shut down when the power button is pressed. The bug then takes over over the phone’s shutdown process, mimicking the standard procedure and animation to make it appear as though the phone has been turned off.
In reality, the device remains on even though the screen goes black.
While the phone is in this state of perceived stasis, the malware can go to work. PowerOffHijack can access sensitive information and exploit the phone’s basic functions, making calls, accessing the camera, and sending text messages.
AVG first discovered PowerOffHijack in China. The firm reports that the malware has infected upwards of 10,000 devices worldwide. Other than the fact that it targets Android devices running 5.0 Lollipop, the latest major version of Google’s mobile OS, details about the bug are scarce.
AVG was also able to determine that the malware required root permissions to run, meaning that normal mobile web-browsing behavior is unlikely to open the door for it. The Google Play Store regularly weeds out malicious content, so it is unlikely that an approved app is PowerOffHijack’s attack vector.
For those still concerned that their device may be affected or at risk, AVG’s anti-virus app promises to detect the threat. Still, as an additional precaution, the company suggests removing the battery from your phone upon shutdown.
AJ Dellinger is a seasoned technology writer whose work has appeared in Digital Trends, International Business Times, and Newsweek. In 2018, he joined Gizmodo as the nights and weekend editor.