Google pulled 21 apps from Android Market that used Trojan horses to steal personal data, download malicious code and secretly repurpose devices. Image: CC myhsu/Flickr

The number of Android malware apps infecting smartphones increased by nearly 50 percent in 2010. On Wednesday, Google pulled 21 Android malware apps from the Android Market, but up to 250,000 Android users may have already downloaded them. The latest Android malware incident has called into question the security of the open Android Market, which allows registered developers to publish whatever they want.

Android malware steals personal data

Android malware was available for download from Android Market for four days before the tech blog Android Police alerted Google of its presence. Google quickly pulled 21 Android malware apps, but an estimated 50,000 to 250,000 Android users downloaded the malicious code. Google has the ability to remove apps remotely from Android devices and did so. However, Android malware has the ability to download code. It is likely that malicious code remains embedded in the affected devices. There is only one way for smartphone users who downloaded the Android malware to ensure their personal data is secure: take the Android device to their carrier and exchange it for a new one.

The Android trojan horse

The 21 Android malware apps were created and posted by a hacker identified by the Android Police as Myournet. Myournet stole copies of popular apps such as Photo Editor, Chess and Advanced Currency Converter and modified them with a Trojan horse. Once the Android malware was downloaded, the Trojan horse, known as a “root exploit,” stole personal information such as the mobile provider and user ID and sent it to the hacker. The Android malware also opens a back door to download code that secretly repurposes the device. For example, an analysis of a Trojan horse called “Android Pjapps” by Symantec found that Chinese hackers used it to hijack the Android app “Steamy Windows.” The Trojan horse infected smartphones and sent invisible text messages to premium rate numbers that would reap commissions for the hackers.

Smartphone security: Android versus Apple

As Android spreads, the open nature of Android apps is developing into a major smartphone security problem for Google. While Apple’s closed system is often criticized, it allows the company to inspect every app in detail before it is allowed for sale in the App Store. Google checks apps occasionally for compliance to its guidelines, but only after they have been circulating in the Android Market.

Sources

The Inquirer: http://www.theinquirer.net/inquirer/news/2030169/android-security-question-malware-surge

BetaNews: http://www.betanews.com/article/Google-removes-21-apps-from-Android-Market-over-malware/1299082528

MSNBC: http://www.msnbc.msn.com/id/41867328/ns/technology_and_science-security/

PC Magazine: http://www.pcmag.com/article2/0,2817,2381252,00.asp

CNN: http://www.cnn.com/2011/TECH/mobile/03/02/google.malware.andriod/index.html?npt=NP1

Post By bryanh (1,420 Posts)

Connect

Do you have a fantastic idea related to this article, but just don't have the money you need to start your own company or side-business? Get the loans you need from https://personalmoneynetwork.com to help get your new company underway, from the small loan professionals at PersonalMoneyNetwork.

PG&E to pay $70 million for pipeline tragedy

PG&E to pay $70 million for pipeline tragedy

Pacific Gas and Electric Co., a northern California utility, has agreed to pay $70 million to the California town of San Bruno for a pipeline explosion that killed eight people in 2010. Company says it’s remorseful The San Francisco-based power company’s president, Chris Johns, released a statement Monday, saying PG&E is sorry and eager to […]

Judge stabbed and deputy shot in Washington courthouse

Grays Harbor County Courthouse

Following a standoff in a Washington state county courtroom Friday, a man reportedly escaped after shooting a sheriff’s deputy in the shoulder and stabbing a judge in the neck. The man is still at large. Treachery among the tree farms The incident occurred Friday afternoon in the western Washington town of Montesano, which bills itself […]

Microraptor was one flashy little dinosaur

Microraptor fossil

A team of Chinese and American scientists have found that Microraptor, a small four winged dinosaur that went extinct about 130 million years ago, was likely black and almost certainly had glossy, iridescent feathers. Until now, the coloring of extinct creatures was a matter of pure speculation. That may no longer be the case. The […]

Autocorrected message leads to school lockdown

Homage to the Sun

Adjacent schools in Georgia were locked down for two hours Wednesday after a text message reportedly warned of a “gunman” on campus. Later, it was learned that the message was the result of a smartphone autocorrect function, attempting to “fix” the misspelled slang word “gunna.” A series of mixups A series of mixups led to […]