Lookout, profile picture
Uploaded byLookout
2,019 views

The New NotCompatible

The document discusses the evolution of the mobile malware known as NotCompatible, particularly its advanced variant NotCompatible.c, which exhibits significant sophistication, resilience, and self-protection capabilities. This malware utilizes peer-to-peer protocols and end-to-end encryption to evade detection and continues to operate through geographically distributed command and control servers. Organizations are urged to implement advanced mobile threat protections and segment networks to mitigate the risks posed by such advanced mobile threats.

Embed presentation

Downloaded 11 times
THE NEW NOTCOMPATIBLE: A sophisticated mobile threat that puts protected networks at risk
Over the past two years, Lookout has tracked the evolution of NotCompatible. 2014 NotCompatible.C has set a new bar for mobile malware sophistication and operational complexity. 2013 Lookout finds NotCompatible variant "C" being spread through spam campaigns on hacked email accounts. 2012 One of the first times that hacked websites were used to specifically target and infect mobile devices. NOTCOMPAT I B L E
The command infrastructure and communication perseveres and self-protects through redundancy and encryption, making it elusive and enduring. Read the blog
The technological evolution of NotCompatible has turned a once compelling piece of malware into one of the known longest-running mobile botnets we’ve seen to-date. Read the blog
    It’s a prime example of how mobile malware complexity is advancing and is borrowing technical tactics already seen in PC malware. Read the blog
 NotCompatible is used as a proxy to run spam campaigns, scalp concert tickets, search the Internet for vulnerabilities, and more. Read the blog
While NotCompatible.A was relatively simplistic architecturally, NotCompatible.C is a changed beast in terms of the technological concepts it uses to stay alive. Read the blog
NOTA B L E AT T R I B U T E S Resiliency Resistance to Detection Self-Protection This threat features impressive new technical attributes compared to earlier variants – attributes that, in combination, Lookout has never before observed in a mobile threat. Read the blog
NOTA B L E AT T R I B U T E S Resiliency Resistance to Detection Self-Protection NotCompatible.C is resilient to network-based blocking because it uses a peer-to-peer protocol and has multiple, geographically-distributed Command and Control (C2) servers. The geo-distribution of its C2 servers allows the malware to function even if law enforcement is able to take down individual servers. Peer-to- peer protocols make the malware resilient to IP and DNS based blocking by enabling infected devices to receive commands by proxy via other infected devices. Read the blog
NOTA B L E AT T R I B U T E S Resiliency Resistance to Detection Self-Protection NotCompatible.C encrypts all C2 and proxied data traffic end-to-end while also performing mutual authentication between clients and C2 servers via public key cryptography. This protocol-level encryption can prevent network security systems from being able to differentiate malicious traffic from legitimate traffic. Read the blog
NOTA B L E AT T R I B U T E S Resiliency Resistance to Detection Self-Protection NotCompatible.C uses a Gateway C2 to analyze incoming connections and likely prevents active probing of the various Operational C2s by blocking connections from non-approved IP addresses. Read the blog
Our investigation shows the possibility that a threat like this could expand to assist in attacks on corporate networks, a risk that should not be ignored. Read the blog
PROTECT I O N STRAT E G I E S Implement mobile threat protection Segment the network Mobile devices typically operate outside the traditional perimeter and beyond the reach of network-based security solutions. An advanced mobile security platform allows organizations to monitor for and protect against suspicious activity on their mobile devices, block identified threats and assess the overall health of their mobile ecosystem. Next generation threats such as NotCompatible.C can provide access to protected networks and facilitate the exfiltration of data in a way that most enterprises are not prepared to defend against. By detecting this threat at the device level, it is possible to block and prevent installation before an attacker can perform any hostile activity. Read the blog
PROTECT I O N STRAT E G I E S Implement mobile threat protection Segment the network All mobile devices used in protected environments — especially those able to connect to external unmanaged networks — should be limited to an isolated network segment with strong controls limiting access to sensitive resources and analytics to detect potentially malicious behavior. Read the blog
Lookout has thus far actively protected against NotCompatible on hundreds of thousands of devices in the U.S. and around the world. Read the blog
To learn more about NotCompatible, read our report or check out our blog.
For more mobile security information, follow

More Related Content

PDF
Feds: You have a BYOD program whether you like it or not
byLookout
 
PDF
2015 Cybersecurity Predictions
byLookout
 
PDF
Relentless Mobile Threats to Avoid
byLookout
 
PDF
Mobile Security 101
byLookout
 
PPTX
Mobile security
byhome
 
PDF
5 Ways to Protect your Mobile Security
byLookout
 
PDF
Looking Forward and Looking Back: Lookout's Cybersecurity Predictions
byLookout
 
PPTX
Mobile Security
byKevin Lee
 
Feds: You have a BYOD program whether you like it or not
byLookout
 
2015 Cybersecurity Predictions
byLookout
 
Relentless Mobile Threats to Avoid
byLookout
 
Mobile Security 101
byLookout
 
Mobile security
byhome
 
5 Ways to Protect your Mobile Security
byLookout
 
Looking Forward and Looking Back: Lookout's Cybersecurity Predictions
byLookout
 
Mobile Security
byKevin Lee
 

What's hot

PDF
The state of mobile app security
byMahima Anand Sharma
 
PDF
State of Application Security Vol. 4
byIBM Security
 
PDF
Case Closed with IBM Application Security on Cloud infographic
byIBM Security
 
PPTX
Mobile Security - 2015 Wrap-up and 2016 Predictions
bySkycure
 
PDF
Mobile Security at the World Cup
byLookout
 
PPT
Cell Phone Viruses & Security
byguestc03f28
 
PDF
Trojan horseofbyod2
byStephanie Vanroelen
 
PDF
Techvorm com-android-security-issues-solutions
bySaad Ahmad
 
PDF
Digital security update: 10 cybersecurity and privacy threats
byEntefy
 
PPTX
Internet of Things - Desire for Convenience Brings Multiple New Attack Vectors
byCraig Walker, CISSP
 
DOCX
Smartphone Security Article
byChristopher Papazian
 
PPTX
Tips and Tricks on Securing your Android Devices
byQuick Heal Technologies Ltd.
 
PPTX
T.A.S.C - mobile device secuirty
byAdam Radly
 
PDF
C0c0n 2011 mobile security presentation v1.2
bySantosh Satam
 
PDF
Top Seven Risks of Enterprise Mobility - How to protect your business
bySymantec
 
PPT
Smart phone and mobile device security
byCAS
 
PDF
Five mobile security challenges facing the enterprise
byNowSecure
 
PDF
Sholove cyren web security - technical datasheet2
bySHOLOVE INTERNATIONAL LLC
 
PDF
How Aligned Are IT, Employees and Security Practices in Today's Mobile World?
byPing Identity
 
PDF
Mobile Security
byMarketingArrowECS_CZ
 
The state of mobile app security
byMahima Anand Sharma
 
State of Application Security Vol. 4
byIBM Security
 
Case Closed with IBM Application Security on Cloud infographic
byIBM Security
 
Mobile Security - 2015 Wrap-up and 2016 Predictions
bySkycure
 
Mobile Security at the World Cup
byLookout
 
Cell Phone Viruses & Security
byguestc03f28
 
Trojan horseofbyod2
byStephanie Vanroelen
 
Techvorm com-android-security-issues-solutions
bySaad Ahmad
 
Digital security update: 10 cybersecurity and privacy threats
byEntefy
 
Internet of Things - Desire for Convenience Brings Multiple New Attack Vectors
byCraig Walker, CISSP
 
Smartphone Security Article
byChristopher Papazian
 
Tips and Tricks on Securing your Android Devices
byQuick Heal Technologies Ltd.
 
T.A.S.C - mobile device secuirty
byAdam Radly
 
C0c0n 2011 mobile security presentation v1.2
bySantosh Satam
 
Top Seven Risks of Enterprise Mobility - How to protect your business
bySymantec
 
Smart phone and mobile device security
byCAS
 
Five mobile security challenges facing the enterprise
byNowSecure
 
Sholove cyren web security - technical datasheet2
bySHOLOVE INTERNATIONAL LLC
 
How Aligned Are IT, Employees and Security Practices in Today's Mobile World?
byPing Identity
 
Mobile Security
byMarketingArrowECS_CZ
 

Viewers also liked

PDF
Mobile Security: The 5 Questions Modern Organizations Are Asking
byLookout
 
PDF
How to (Safely) Cut the Cord With Your Old iPhone
byLookout
 
PPTX
Religion slide
byBadi Riyadi
 
PDF
Ageing – a Global Challenge: Sharing is Caring
byPlan de Calidad para el SNS
 
PPT
Программный комплекс "НейроКС"
bykulibin
 
PPSX
La casita de BERTA
byJulio Nieto Berrocal
 
PPT
Seo Cycle - Ilustrações de ciclos de SEO
byMarcio Okabe
 
PDF
Cascades Band Goa's year 2013 on SlideShare
byCascades Band Goa
 
PDF
Presentation
byJaume Guasch
 
PPT
Delivering Happiness - FORTUNE Sales Summit - 4-21-10
byDelivering Happiness
 
PPTX
Presentation for Academic English
byCarolien van Vugt
 
PDF
coqnow2013
byRita Sheloff
 
DOC
zaragoza turismo 31
bySaucepolis blog & Hotel Sauce
 
PDF
DS-00593-14-XTR70020-High-temperature, High Input Voltage, 2A Positive LDO Re...
byBenjamin Parpillon
 
PPTX
Intasc standards, special interests report
bySarah Sell
 
PDF
Lista de-precios-compugreiff-enero-15-2014
byxxxxx
 
PDF
Las 7 leyes espirituales del éxito de deepak chopra
byAna Sek
 
PDF
Ls InnoBiotech
byLeonardo Zangrando
 
Mobile Security: The 5 Questions Modern Organizations Are Asking
byLookout
 
How to (Safely) Cut the Cord With Your Old iPhone
byLookout
 
Religion slide
byBadi Riyadi
 
Ageing – a Global Challenge: Sharing is Caring
byPlan de Calidad para el SNS
 
Программный комплекс "НейроКС"
bykulibin
 
La casita de BERTA
byJulio Nieto Berrocal
 
Seo Cycle - Ilustrações de ciclos de SEO
byMarcio Okabe
 
Cascades Band Goa's year 2013 on SlideShare
byCascades Band Goa
 
Presentation
byJaume Guasch
 
Delivering Happiness - FORTUNE Sales Summit - 4-21-10
byDelivering Happiness
 
Presentation for Academic English
byCarolien van Vugt
 
coqnow2013
byRita Sheloff
 
zaragoza turismo 31
bySaucepolis blog & Hotel Sauce
 
DS-00593-14-XTR70020-High-temperature, High Input Voltage, 2A Positive LDO Re...
byBenjamin Parpillon
 
Intasc standards, special interests report
bySarah Sell
 
Lista de-precios-compugreiff-enero-15-2014
byxxxxx
 
Las 7 leyes espirituales del éxito de deepak chopra
byAna Sek
 
Ls InnoBiotech
byLeonardo Zangrando
 

Similar to The New NotCompatible

PPTX
An introduction to Unified Threat Management (UTM), for Dummies
byElsa Cariello
 
PDF
NACCTFO Cyber Security Presentation 2014 New Orleans
byMaurice Dawson
 
PPTX
MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ...
byMaurice Dawson
 
PDF
Mobile Banking Channel Security - Cyber Security Conference 2011
byFilip Maertens
 
PDF
Modern Web Security, Lazy but Mindful Like a Fox
byC4Media
 
PPTX
Keeping up with the Revolution in IT Security
byDistil Networks
 
PDF
Analyzing and Defending from Modern Internet Threats
byNECST Lab @ Politecnico di Milano
 
PDF
"BitDefender - What's Next" by Alexandru Balan @ eLiberatica 2008
byeLiberatica
 
PDF
A tale of mobile threats
byVincenzo Iozzo
 
PDF
Juan miguel-velasco-lopez-urda-seguridad-informatica-cloud-computing
byJuan Miguel Velasco López Urda
 
PDF
New Security Challenges Juan Miguel Velasco
byJuanMiguelVelascoWeb
 
PDF
New Security Challenges Juan Miguel Velasco
byJuanMiguelVelascoWeb
 
PPT
Lumension Security - Adjusting our defenses for 2012
byAndris Soroka
 
PPTX
OpenSouthCode '19 - Application Security Fundamentals [2019-May-25]
byÁngel Gómez Romero
 
PDF
Emerging cyber threats_report2012
byday4justice
 
PDF
People the biggest cyber risk
byUniversity of Suffolk
 
PPTX
APPNATION IV - The State of Security in the Mobile Enterprise - Cesare Garlati
byMasha Geller
 
PPTX
Mobile security trends
byKen Huang
 
PDF
DSS ITSEC Conference 2012 - Forescout NAC #1
byAndris Soroka
 
PDF
Are You Prepared for the Next Mobile Attack?
byCheck Point Software Technologies
 
An introduction to Unified Threat Management (UTM), for Dummies
byElsa Cariello
 
NACCTFO Cyber Security Presentation 2014 New Orleans
byMaurice Dawson
 
MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ...
byMaurice Dawson
 
Mobile Banking Channel Security - Cyber Security Conference 2011
byFilip Maertens
 
Modern Web Security, Lazy but Mindful Like a Fox
byC4Media
 
Keeping up with the Revolution in IT Security
byDistil Networks
 
Analyzing and Defending from Modern Internet Threats
byNECST Lab @ Politecnico di Milano
 
"BitDefender - What's Next" by Alexandru Balan @ eLiberatica 2008
byeLiberatica
 
A tale of mobile threats
byVincenzo Iozzo
 
Juan miguel-velasco-lopez-urda-seguridad-informatica-cloud-computing
byJuan Miguel Velasco López Urda
 
New Security Challenges Juan Miguel Velasco
byJuanMiguelVelascoWeb
 
New Security Challenges Juan Miguel Velasco
byJuanMiguelVelascoWeb
 
Lumension Security - Adjusting our defenses for 2012
byAndris Soroka
 
OpenSouthCode '19 - Application Security Fundamentals [2019-May-25]
byÁngel Gómez Romero
 
Emerging cyber threats_report2012
byday4justice
 
People the biggest cyber risk
byUniversity of Suffolk
 
APPNATION IV - The State of Security in the Mobile Enterprise - Cesare Garlati
byMasha Geller
 
Mobile security trends
byKen Huang
 
DSS ITSEC Conference 2012 - Forescout NAC #1
byAndris Soroka
 
Are You Prepared for the Next Mobile Attack?
byCheck Point Software Technologies
 

More from Lookout

PDF
The New Assembly Line: 3 Best Practices for Building (Secure) Connected Cars
byLookout
 
PDF
What Is Spyware?
byLookout
 
PPTX
When Android Apps Go Evil
byLookout
 
PDF
Scaling Mobile Development
byLookout
 
PDF
Visualizing Privacy
byLookout
 
PDF
Hiring Hackers
byLookout
 
PDF
3 Ways to Protect the Data in Your Google Account
byLookout
 
PDF
3 Ways to Protect the Data in Your Apple Account
byLookout
 
PDF
The Back to School Smartphone Guide
byLookout
 
PDF
Spring Cleaning for Your Smartphone
byLookout
 
PPTX
Mobile Threats, Made to Measure
byLookout
 
PDF
Security & Privacy at the Olympics
byLookout
 
PDF
5 Types of Shady Apps
byLookout
 
PDF
10 Beautiful Enterprise Products
byLookout
 
PDF
Hacking the Internet of Things for Good
byLookout
 
PDF
What is a Mobile Threat?
byLookout
 
PDF
Dragon lady
byLookout
 
PDF
Dragon Lady
byLookout
 
PDF
History of Lookout
byLookout
 
PDF
Scaling Up Lookout
byLookout
 
The New Assembly Line: 3 Best Practices for Building (Secure) Connected Cars
byLookout
 
What Is Spyware?
byLookout
 
When Android Apps Go Evil
byLookout
 
Scaling Mobile Development
byLookout
 
Visualizing Privacy
byLookout
 
Hiring Hackers
byLookout
 
3 Ways to Protect the Data in Your Google Account
byLookout
 
3 Ways to Protect the Data in Your Apple Account
byLookout
 
The Back to School Smartphone Guide
byLookout
 
Spring Cleaning for Your Smartphone
byLookout
 
Mobile Threats, Made to Measure
byLookout
 
Security & Privacy at the Olympics
byLookout
 
5 Types of Shady Apps
byLookout
 
10 Beautiful Enterprise Products
byLookout
 
Hacking the Internet of Things for Good
byLookout
 
What is a Mobile Threat?
byLookout
 
Dragon lady
byLookout
 
Dragon Lady
byLookout
 
History of Lookout
byLookout
 
Scaling Up Lookout
byLookout
 

Recently uploaded

PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
apidays Paris 2025 | API Layer7 Security: Real-World Use Cases (BBVA & Nexi)
byapidays
 
PDF
Founder & Tech Lead | Web Development & Digital Growth Consultant | Helping B...
byShyamal Das
 
PDF
AI Vector Search Best Practices Multicloud Feb 2026
bySandesh Rao
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
final.pdf
byomarbishtawi04
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
apidays Paris 2025 | API Layer7 Security: Real-World Use Cases (BBVA & Nexi)
byapidays
 
Founder & Tech Lead | Web Development & Digital Growth Consultant | Helping B...
byShyamal Das
 
AI Vector Search Best Practices Multicloud Feb 2026
bySandesh Rao
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
final.pdf
byomarbishtawi04
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 

The New NotCompatible

  • 1.
    THE NEW NOTCOMPATIBLE: A sophisticated mobile threat that puts protected networks at risk
  • 2.
    Over the pasttwo years, Lookout has tracked the evolution of NotCompatible. 2014 NotCompatible.C has set a new bar for mobile malware sophistication and operational complexity. 2013 Lookout finds NotCompatible variant "C" being spread through spam campaigns on hacked email accounts. 2012 One of the first times that hacked websites were used to specifically target and infect mobile devices. NOTCOMPAT I B L E
  • 3.
    The command infrastructure and communication perseveres and self-protects through redundancy and encryption, making it elusive and enduring. Read the blog
  • 4.
    The technological evolutionof NotCompatible has turned a once compelling piece of malware into one of the known longest-running mobile botnets we’ve seen to-date. Read the blog
  • 5.
        It’s a prime example of how mobile malware complexity is advancing and is borrowing technical tactics already seen in PC malware. Read the blog
  • 6.
     NotCompatible isused as a proxy to run spam campaigns, scalp concert tickets, search the Internet for vulnerabilities, and more. Read the blog
  • 7.
    While NotCompatible.A was relatively simplistic architecturally, NotCompatible.C is a changed beast in terms of the technological concepts it uses to stay alive. Read the blog
  • 8.
    NOTA B LE AT T R I B U T E S Resiliency Resistance to Detection Self-Protection This threat features impressive new technical attributes compared to earlier variants – attributes that, in combination, Lookout has never before observed in a mobile threat. Read the blog
  • 9.
    NOTA B LE AT T R I B U T E S Resiliency Resistance to Detection Self-Protection NotCompatible.C is resilient to network-based blocking because it uses a peer-to-peer protocol and has multiple, geographically-distributed Command and Control (C2) servers. The geo-distribution of its C2 servers allows the malware to function even if law enforcement is able to take down individual servers. Peer-to- peer protocols make the malware resilient to IP and DNS based blocking by enabling infected devices to receive commands by proxy via other infected devices. Read the blog
  • 10.
    NOTA B LE AT T R I B U T E S Resiliency Resistance to Detection Self-Protection NotCompatible.C encrypts all C2 and proxied data traffic end-to-end while also performing mutual authentication between clients and C2 servers via public key cryptography. This protocol-level encryption can prevent network security systems from being able to differentiate malicious traffic from legitimate traffic. Read the blog
  • 11.
    NOTA B LE AT T R I B U T E S Resiliency Resistance to Detection Self-Protection NotCompatible.C uses a Gateway C2 to analyze incoming connections and likely prevents active probing of the various Operational C2s by blocking connections from non-approved IP addresses. Read the blog
  • 12.
    Our investigation showsthe possibility that a threat like this could expand to assist in attacks on corporate networks, a risk that should not be ignored. Read the blog
  • 13.
    PROTECT I ON STRAT E G I E S Implement mobile threat protection Segment the network Mobile devices typically operate outside the traditional perimeter and beyond the reach of network-based security solutions. An advanced mobile security platform allows organizations to monitor for and protect against suspicious activity on their mobile devices, block identified threats and assess the overall health of their mobile ecosystem. Next generation threats such as NotCompatible.C can provide access to protected networks and facilitate the exfiltration of data in a way that most enterprises are not prepared to defend against. By detecting this threat at the device level, it is possible to block and prevent installation before an attacker can perform any hostile activity. Read the blog
  • 14.
    PROTECT I ON STRAT E G I E S Implement mobile threat protection Segment the network All mobile devices used in protected environments — especially those able to connect to external unmanaged networks — should be limited to an isolated network segment with strong controls limiting access to sensitive resources and analytics to detect potentially malicious behavior. Read the blog
  • 15.
    Lookout has thusfar actively protected against NotCompatible on hundreds of thousands of devices in the U.S. and around the world. Read the blog
  • 16.
    To learn moreabout NotCompatible, read our report or check out our blog.
  • 17.
    For more mobilesecurity information, follow