Android Phone Tips

Android Phone Tips
Google's latest update for its Android mobile OS appears to already have been subverted by hackers, according to the security vendor Symantec. Symantec found an application called the "Android Market Security Tool" that is a repackaged version of the legitimate update by the same name that removed the DroidDream malware from infected devices.

Google took the rare step last week of forcing the "Android Market Security Tool March 2011" onto devices to remove DroidDream. DroidDream could also download other code to a person's mobile phone. Google has patched the vulnerabilities in Android versions above 2.2.2, but many Android users do not have the latest version of the software.

Google released an application this week to remove malicious applications for Android phones that were found in Google’s Android Market. Researchers at Symantec Corp. now are reporting that they have found copies of the Android Market Security Tool that contain suspicious code.

“The technique employs nothing new,” said Joe Chen, director of engineering for Symantec Security Response. Malware writers routinely sail under false colors. The malware took advantage of known vulnerabilities which do not affect versions 2.2.2 or higher of the Android software. 

Google removed the malicious applications from Android Market March 1, and this week released the security tool, which was pushed to affected users. The Android.Rootcager malware was found in versions of the security tool on an unregulated third-party Chinese marketplace. Thanks Android team!!” to “Why are people thanking Android/Google? 

Following the DroidDream Android malware scare, Google announced that they had removed the malicious applications from the Android Market, suspended the developer accounts, and contacted law enforcement, in addition to using its remote application removal feature (Android's so-called "kill switch") on affected phones.
Google automatically pushed out "Android Market Security Tool March 2011," and notified users via e-mail about the installation and removal of apps, whereas this "trojanized" version asks users to install it. 

In total, 58 malicious apps were found in the Android Market and downloaded 260,000 times. The attacks affected phones running on versions before 2.2.2.  Mobile users who search for [poison control], [suicide], and common emergency numbers already receive a result showing the relevant emergency phone number. 
By. Android Phone Tips

Tuesday, March 22, 2011 | 0 comments | Labels: , ,


Post a Comment