Muse: Towards robust and stealthy mobile botnets via multiple message push services

Wei Chen, Xiapu Luo, Chengyu Yin, Bin Xiao, Man Ho Allen Au, Yajuan Tang

Research output: Chapter in book / Conference proceedingConference article published in proceeding or bookAcademic researchpeer-review

5 Citations (Scopus)

Abstract

Exploiting unique features in mobile networks and smartphones, mobile botnets pose a severe threat to mobile users, because smartphones have become an indispensable part of our daily lives and carried a lot of private information. However, existing mobile botnets usually rely on a single command and control channel (e.g., a push server or an SMS server) to disseminate commands, which can become the bottleneck or a single point of failure, without considering the robustness. In this paper, we propose MUSE, a novel multiple push service-based botnet, which can significantly outperform existing push-styled mobile botnets in terms of robustness, controllability, scalability, and stealthiness. Although the basic idea of using multiple push services seems straightforward, we explore the design space of exploiting such services and tackle several challenging issues to overcome the limitations of existing push-styled mobile botnets. We have implemented MUSE by exploiting ten popular push services and evaluated it through extensive experiments. The results demonstrate not only MUSE’s feasibility but also its advantages, such as stealthiness, controllability etc.
Original languageEnglish
Title of host publicationInformation Security and Privacy - 21st Australasian Conference, ACISP 2016, Proceedings
PublisherSpringer Verlag
Pages20-39
Number of pages20
ISBN (Print)9783319402529
DOIs
Publication statusPublished - 1 Jan 2016
Event21st Australasian Conference on Information Security and Privacy, ACISP 2016 - Melbourne, Australia
Duration: 4 Jul 20166 Jul 2016

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume9722
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference21st Australasian Conference on Information Security and Privacy, ACISP 2016
Country/TerritoryAustralia
CityMelbourne
Period4/07/166/07/16

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Cite this