Criminals have resorted to bribes in order to smuggle malware into the source code of mobile gaming apps. The scam, in which malware authors bribed the employees of a legitimate mobile games company in China to embed malware into mobile apps, was uncovered by security researchers from Check Point. The bribe ensured that malicious software was whitelisted (i.e. approved for download without scanning) by Qihoo 360, China’s biggest antivirus software firm. This meant that Chinese users of Qihoo 360 installed the malware-infected apps from third-party app stores without receiving malware warnings, because Qihoo “trusted” the apps from the unnamed games developer.
Original Source: The Register
View the full story here