Rogue apps inside Android Marketplace

Published: 2011-03-03
Last Updated: 2011-03-03 14:08:10 UTC
by Manuel Humberto Santander Pelaez (Version: 1)
7 comment(s)

Android Marketplace is a place where users that own devices using the Android operating system can download a large variety of apps for the device. There has been reports of applications that have gone into Android Marketplace DroidDream infected with malware, which was rooting phones and stealing the IMSI and IMEA codes.

One of the favorite targets of attackers are mobile devices. They can use them as bridges to gain access to corporate data network. To minimize risks, it is important to establish a security baseline and place antimalware protection inside them. We have the example of Trendmicro Mobile Security for Android, Mcafee Mobile Security and Symantec Mobile Internet Security.

More information at http://antivirus.about.com/b/2011/03/02/as-many-as-56-android-apps-contain-backdoor.htm and http://blog.mylookout.com/2011/03/security-alert-malware-found-in-official-android-market-droiddream/

-- Manuel Humberto Santander Peláez | http://twitter.com/manuelsantander | http://manuel.santander.name | msantand at isc dot sans dot org

7 comment(s)

Comments

One of the most interesting facts surrounding this incident is how few of the supposed antivirus products for Android detected anything at all.
Agreed, Mobile Anti-malware still seems to be leagues behind. I'm always a little disheartened when Symantec Mobile claims to be 'up to date' despite having 2 week old definitions.
I agree as well. At least a savy Android user can find anti-malware for thier devices. Windows 7 Phone has no anti-malware support to date and it's been on the market for over 6 months. Can we expect to see the same thing happening to them in the near future too?
Why would I need anti-malware on my device ? It is the AppStores job to ensure that they are not infecting users, and to use the kill switch when they find bad stuff.
It is complete waste to spend my valuable CPU cycles/battery on doing something that could easily be done centrally.
Just need a responsible Marketplace/AppStore.
That might be sufficient if you don't visit any web pages, never receive email or SMS, and only use your device to connect to the app store.
I totally agree with Scott! :-)
Yowsah...

http://online.wsj.com/article/SB10001424052748703883504576186810666183384.html?mod=e2tw

Diary Archives