Alternative market version of Android security app is infected with malware

March 10, 2011 11:53 AM
Dean Takahashi

Add a Comment

July 9-10, 2013
San Francisco, CA

Google suffered a black eye with the malware that targeted dozens of Android Market apps last week. But even as users clean out their phones, now comes this: the Android Market Security Tool released by Google has been copied to third-party alternative Android markets and it is itself embedded with malware.

The latest incident shows that it’s not that easy to keep a multifaceted mobile app ecosystem free of malware.

On March 6, Google published the app “Android Market Security Tool” to undo the effects of Android.Rootcager, a trojan horse that steals information from Android devices. The app was pushed to devices of users who had downloaded and installed infected apps.

But Symantec said it has identified suspicious code within a repackaged version of the tool. Typically, Android Market apps are illegally copied from the Android Market and uploaded (often with different code embedded in them) to alternative Android markets in China and elsewhere. Symantec said the malware’s code is actually hosted on Google Code under an Apache license.

Google says it encourages Android users only to install apps from sources they trust. The contaminated security app could raise eyebrows if it is installed on a phone and it prompts users to approve whatever the app wants to execute.

http://pulse.yahoo.com/_RR4L2JVP4YW224YM7DJQ5YVRC4 Gigadee

Steve Jobs hard at work at home again?
http://twitter.com/Kcarpenter5407 Karl Carpenter

Ok, really guys? Why are we trying to give Android such an ugly name over malware when these apps come from THIRD PARTY MARKETS!!! Yes, there have been a few pop their ugly faces up in the ACTUAL Market, but lets be real – When a USER decides to go OUT OF THEIR WAY and install a 3rd party market (Likely to pirate stuff or watch porn) THEY TAKE THE CHANCE! Ya know – iPhone has 3rd party markets too, you just have to JailBreak to get em – I bet that they have some ugly crap in those too. Remember iOS isn't perfect, there is after all a reason that you can JailBreak, and they are called exploits for a reason.
http://twitter.com/ikoniqueOS ikonique OS

It is hardly “trying to give Android such an ugly name' by reporting this. Everything you read in the tech news is not part of any iOS vs Android warfare. This war is only in the heads of fan-boys, to the rest of us they are just phones…So as a clearly passionate Android fan wasting your time doing free PR for the OS, you might not like reading 'off-message' articles like this one. Your (apparent) strategy of keeping users in the dark to satisfy your bias is hardly a solution though.