A new Android malware family is able to blend in with normal network traffic and avoid detection by encrypting its payloads, in order to access internal networks. The backdoor, known as MilkyDoor, has so far affected 200 unique Android apps available on the official Google Play Store. Trend Micros mobile threat response team reveals in a blog post that it has something to do with its presumed predecessor, DressCode. The malware leverages the SOCKS protocol and remote port forwarding via SSH to achieve dynamic port forwarding.”]
Source: https://grahamcluley.com/milkydoor-malware-turns-androids-backdoors-attack-enterprise-networks/