RSS Alerts
Google waves 'bye, bye' to dozens of malware-laced apps on its Android Market

Share

More services

Related Stories

  • Google Android apps send credentials in the clear
    The Google Android smartphone platform has come under fire for a lack of security in certain apps, including an 'official' Facebook application that transmits certain user credentials in the clear.
  • Two Android viruses circulating in the wild
    Two Google Android viruses have been spotted circulating and infecting users’ smartphones in the wild. The viruses are potentially nasty because one – SW.SecurePhone – uploads data to remote servers from the users' handset, while the other – SW.Qieting – auto-forwards messages to a remote number.
  • Veracode expands mobile app security verification to Android and Apple iOS
    The application security specialist will branch out from the BlackBerry and Windows Mobile operating systems and begin offering its security verification services to companies developing apps for Android and Apple’s iOS.
  • Android 'sensory malware' steals financial data on the fly
    Researchers at US and Hong Kong universities have developed a new type of malware for the Google Android platform that sits in the background, evaluating the voice and internet data flowing through the smartphone and, when it senses something valuable to cybercriminals, it bursts into action and relays the data to electronic crooks.
  • Hackers could take a security bite out of Android Gingerbread
    Researchers at North Carolina State University have discovered a flaw in the Android 2.3 Gingerbread mobile operating system that allows hackers to gain access to information on the phone's microSD storage card.

Top 5 Stories

News

DroidDream trojan is a nightmare for thousands of Android users

03 March 2011

Google has removed 55 apps from its Android Market after tens of thousands of users downloaded applications that were infected by the DroidDream trojan, according to numerous news reports.

The list of infected Android applications include Chess, Super Guitar Solo, Bowling Time, Super History Eraser, and Photo Editor.

Dave Marcus, director of security research and communications from McAfee Labs, commented on the DroidDream trojan: “Analysis has shown that these apps can break out of the typical sandbox that most apps reside in, to potentially gain control over the entire device and its data. In terms of attacks and malware, it doesn’t get any worse than root access, which this malware has.”

Tim Armstrong, a researcher at Kaspersky Labs, said that he downloaded Super Guitar Solo and found it contained the Droid Dream trojan. "The application will attempt to gather product ID, device type, language, country, and userID among other things, and then upload them to a remote server….This discovery is important because up until now most of the Android malware has been found outside of the Android Market, which requires a number of special steps to be taken in order to infect the phones. In this case, users are even able to install from the web with the new Android Market format.”

According to Lookout Mobile Security, Lompolo, a user on the news aggregation site Reddit, discovered the first instances of the malware after noticing that the developer of one of the malicious applications had posted pirated versions of legitimate Android apps under the developer name “Myournet.” Additional DroidDream developers include “Kingmall2010” and we20090202”.

Google has the ability to remotely disable malicious applications from the Android device, but so far has not done so because the applications are under active investigation, noted Lookout.

This article is featured in:
Application Security • Wireless and Mobile Security

 

Comments

jjmfe says:

03 March 2011
That closed system of Apple's app store begins to look more and more attractive. A totally open unregulated platform comes with greater risk. But I'd argue that Apple's basic platform hasn't necessarily been more secure through the years (see the periodic hacker tests, how long to get in), Apple's share of the market has been a contributing factor in the lack of interest hackers and other purveyors of malicious content might choose to develop. I wonder with the burgeoning growth of the iOS platform if it too will become of more interest to these creative minds.

Note: The majority of comments posted are created by members of the public. The views expressed are theirs and unless specifically stated are not those Elsevier Ltd. We are not responsible for any content posted by members of the public or content of any third party sites that are accessible through this site. Any links to third party websites from this website do not amount to any endorsement of that site by the Elsevier Ltd and any use of that site by you is at your own risk. For further information, please refer to our Terms & Conditions.

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012