Bidvert-advert

Stay Update - ICT Security

Enter your email address:

We hate spam as much as you do and we will never sell, barter, or rent your email address to any unauthorized third party.

Most Frequently Used Software


CURL / XPertMailer / AutoBlogger / (Parser - PHP Simple HTML DOM)

mercoledì 14 dicembre 2011

Google removes malicious applications after 14,000 downloads

Malicious apps were uploaded to Google's Android Market on the weekend.

According to F-Secure, the apps included malware that, if installed, attempted to send SMS messages to premium-rate numbers. Trojanised versions of popular apps were uploaded by the developer ‘Lagostrod'; these included downloaders for Angry Birds, Cut the Rope, Need for Speed: Shift, and Assassin's Creed: Revelations. Malicious apps were also uploaded by another rogue developer, ‘Miriada Production'.

Google removed the apps after being notified of the difficulty. However, in line with mobile security firm Lookout, the apps were downloaded around 14,000 times. A Google spokesperson declined to touch upon the incident.

Lookout claimed that Google responded quickly to its reports and pulled the apps from the Android Market and, on the time of removal, the applications had only been downloaded by a comparatively small choice of users, and the severity of the threat was low.

“However, the fraudsters posted 13 new supposed downloaders to the Android Market, again positioned as free versions of popular games. It appears that these apps may need reached a broader audience while published to the market,” it said.

Vanja Svajcer, principal virus researcher at SophosLabs, said: “Logastrod exploited the convenience of cloning Android apps, made Trojanised copies of many popular games and uploaded them to the Market. The attacker created at the least a dozen copies of the preferred games and published them as a free version after adding code to send SMS messages to premium-rate numbers.

“Misusing premium SMS services is the most typical model for malicious mobile malware. When a malicious app is installed, it starts sending or receiving messages, which makes the installation very expensive for the user. The wear is commonly seen only when it's too late, once a monthly bill is received.

“We have already stated several times that the necessities for becoming an Android developer which could publish apps to the Android market are far too relaxed. The price of becoming a developer and being banned by Google is way less than the cash that may be earned by publishing malicious apps. The attacks on Android Market will continue so long as the developer requirements stay too relaxed.”



Pubblicato da alle 02:22

Nessun commento:

Posta un commento

Comments links could be nofollow free

Iscriviti a: Commenti sul post (Atom)