You are here: Home Blog ClearView IT 100 Countries Hit By Android DDoS Malware

ClearView IT Blog

ClearView IT has been serving the Phoenix area since 2005, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

100 Countries Hit By Android DDoS Malware

ClearView IT Blog Alerts
0 Comments
100 Countries Hit By Android DDoS Malware

In what is one of the first attacks of its kind, a botnet dubbed WireX swept across 100 countries, controlling over 120,000 IP addresses at its peak. The factor that made WireX so unique was the fact that the botnet was made up of Android-powered devices that had one of 300 malicious apps downloaded from the Google Play Store.

How It Works
WireX was designed to use HTTP requests to bombard their targets, directing as many as 20,000 requests to a target every second to use up the target’s server resources. This number of requests may not have been effective, if it weren’t for where WireX would direct its attack on the victim site. Rather than just sending 20,000 requests every second to the website as a whole, WireX would target specific pages that used more of the site’s resources. Search pages were frequently targeted for this reason.

Why Is WireX So Nasty?
There are a few factors that contribute to why WireX managed to cause such a big fuss, so quickly.

First off, although WireX is an Android-powered mobile botnet, the traffic it sends to the targeted website appears to be regular mobile browser traffic. This is a problem, because most experts who focus on defending companies from DDoS attacks utilize filters that help them to sort the malicious traffic out from the legitimate traffic. This is more difficult with WireX, as it includes its own fully-functioning browser that hides its information from the targeted system.

In addition to this, WireX also leverages SSL as a part of its attacks, which usually protects an Android user’s browser session. In this case, however, it only makes WireX more difficult to detect.

Defeating the DDoS
It ultimately took a team of experts from Cloudflare, Akamai, Flashpoint, Dyn, Google, Team Cymru and EiskIQ to stop WireX. The seven companies needed to pool their resources and data on WireX in order to identify it as a mobile-based attack, and then to identify the 300 malicious Google Play Store apps that delivered it. While these apps have not been named to the public, they were often media players, ringtones, or storage managers. Google has since blocked these apps from the Play Store, and has also removed them from the devices that were infected.

So, What Can You Do?
Your most effective defense against threats like WireX and other applications that sneak in malware is to simply not download applications that you don’t trust, as well as to educate employees on why they shouldn’t either. For more information on the latest threats and how you can protect yourself, call ClearView IT at 866-326-7214.

Tweet
Tags:
Android Hackers DDoS
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Monday, 05 May 2025
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Search the Blog

Blog Categories

Tag Cloud

Tip of the Week Security Technology Best Practices Business Computing Hackers Productivity Software Privacy Network Security Data Cloud Business User Tips IT Support Internet Hardware Innovation Malware Email Hosted Solutions Efficiency Workplace Tips Computer Microsoft Google Collaboration Android Cybersecurity Phishing Business Management IT Services Backup Ransomware Data Backup communications Smartphone Upgrade Smartphones Small Business Microsoft Office Mobile Devices Network Data Recovery Communication Managed IT Services Quick Tips Productivity Social Media VoIP Users Mobile Device Automation Tech Term Windows 10 Business Continuity Facebook Passwords Holiday Disaster Recovery Covid-19 IT Support Browser Apps Managed Service Windows 10 Cloud Computing Outsourced IT Miscellaneous Managed Service Provider Internet of Things Remote Work Data Management Saving Money Operating System Government Workplace Strategy Gadgets Artificial Intelligence Managed IT services Networking Windows Spam Business Technology Mobile Device Management Blockchain WiFi Bandwidth Server Information Remote Encryption App Virtualization Office 365 Apple Information Technology Employee/Employer Relationship History Gmail Office Budget Two-factor Authentication Conferencing Cybercrime Access Control Data Security Health Big Data Wi-Fi BDR Analytics IT Management Training Hacker Cost Management Compliance Document Management Patch Management Vendor Employer-Employee Relationship Save Money Help Desk Remote Monitoring Hacking Voice over Internet Protocol Remote Computing Password Managed Services Computing Data loss Vendor Management Money Hard Drive Customer Service Unified Threat Management Firewall Legal Augmented Reality Word Search... Data storage Best Practice IBM Applications Website Retail Vulnerabilities Alert Project Management Hiring/Firing Mobile Office Outlook BYOD Free Resource Google Maps Chrome How To Scam Windows 11 Sports Social VPN Twitter SaaS DDoS Mobile Computing Update Law Enforcement Marketing End of Support Printer iPhone Education Running Cable Cortana Data Breach Content Filtering Storage Paperless Office Antivirus Router Maintenance Travel Virtual Reality Social Engineering Monitoring Cryptocurrency The Internet of Things Healthcare Black Market YouTube Cleaning User Remote Workers Websites Robot Laptop Windows 7 Mobility Meetings Software as a Service Virtual Private Network Data Protection Telephone Downtime Solid State Drive Safety Current Events Excel Solutions Chromebook Drones Virtual Desktop Experience PowerPoint Images 101 Administration Integration Automobile Display Presentation Tech Terms Specifications Virtual Assistant How To Managed IT Microchip IT Consultant Disaster Flexibility Digital Employees Avoiding Downtime Customer Relationship Management Holidays Co-Managed IT Taxes Identity Theft Processor Entertainment Hack Lithium-ion battery Notifications Unified Communications Cooperation Video Conferencing Google Docs Processors Virtual Machines Bluetooth Physical Security Computer Repair Distributed Denial of Service Office Tips Multi-factor Authentication Professional Services Private Cloud Memory Start Menu HIPAA Downloads Saving Time Computer Care Vulnerability Politics Wireless Technology Managed Services Provider Computers Bitcoin Machine Learning eWaste Settings Banking Term Google Apps Tablets Google Wallet Download Piracy intranet Shortcut Messenger Deep Learning Telework Wireless HTML Browsers Smartwatch Supercomputer Nanotechnology Communitications Heating/Cooling Microsoft 365 Google Calendar Environment Virus Smart Technology Business Metrics Google Play Hosted Solution Windows XP Upload Procurement Software License Social Networking Books Social Network FinTech Motion Sickness Data Analysis CES Society Screen Reader IT Assessment Inbound Marketing Comparison Google Drive Language Security Cameras Trends Supply Chain Management Mobile Technology Value Devices Cyber security Knowledge Reading Corporate Profile Monitors Customer Resource management Organization Visible Light Communication Fileless Malware Employer Employee Relationship Windows 8 Smart Devices Tip of the week Television Telephony Supply Chain Cabling Gamification Remote Working Electronic Payment Company Culture Staffing Regulations Trend Micro Relocation Tablet Displays Telephone System AI G Suite Advertising Work/Life Balance Directions Digital Security Cameras Tracking Tech Support Backup and Disaster Recovery Electronic Health Records IP Address Transportation Mouse VoIP Workplace Content Desktop Wasting Time Phone System Accountants eCommerce Modem Electronic Medical Records Web Server Videos Digital Payment Database Surveillance SharePoint In Internet of Things Scams Hacks Worker Network Congestion Managing Costs Recovery Equifax Competition SSID Reliable Computing Access Writing Health IT Media Public Cloud Tactics Development Hard Drive Disposal Employer/Employee Relationships Computer Accessories Time Management Entrepreneur Cables LiFi Username Virtual Machine Documents Startup Optimization Application Freedom of Information Audit Scalability Spyware Reviews Text Messaging Navigation 2FA File Sharing Proactive IT Addiction email scam Teamwork Administrator Business Intelligence Redundancy Point of Sale Bring Your Own Device Data Storage Mobile Security Hypervisor Securty Legislation News Medical IT Cache User Tip Shopping Evernote Paperless Workers Music Network Management Domains SQL Server Unified Threat Management Shortcuts PCI DSS Licensing Emails Humor Troubleshooting Fake News Printing Proxy Server Gig Economy CCTV Business Communications Service Level Agreement Internet Service Provider Computing Infrastructure Azure Botnet Touchscreen Be Proactive Emergency Rental Service Micrsooft Management Regulations Compliance Computer Malfunction Device security Managed IT Service Wireless Headphones Memes Public Speaking Microsoft Excel Vendor Mangement Flash Workplace Strategies Telephone Systems Tech Human Resources Samsung Business Growth Streaming Media Going Green Net Neutrality Business Cards Keyboard Uninterrupted Power Supply Error Financial Data Webcam IT Business Owner Hard Drives Business Mangement Bookmark Risk Management

Blog Archive

Recent Comments

No comments yet.

Interested In A Free Consultation?

Click Here