New Android Malware Can Root Phones Remotely

A report from LookOut Mobile Security on Tuesday last stated that a known malicious Android program has been updated with a new ability. The updated version of the “Legacy Native” (LeNa) app has the ability to harm a device using an exploit called GingerBreak to gain root permission on Android phones without depending on a user’s interaction or permission.

The new LeNa variant hides its smuggled baggage just past the ‘End of Image’ market of a normal functioning JPEG. After that the malware will communicate with a command and control server to install and launch packages without the phone user’s knowledge. As far as LookOut Mobile knows, the malware is currently being distributed in a fake version of Angry Birds Space and is not yet known to be present in the Google Play Store.