Print 47 comment(s) - last by YashBudini.. on Mar 10 at 2:40 PM

Company will release special removal tool for affected users, is remotely killing apps

Google is reacting quickly to what is perhaps the largest mass infection of users of its Android OS, yet. Rather than keep quiet, Google quickly pulled the 58 malicious apps, which were repackaged versions of legitimate apps (containing extra malicious APKs designed to grab personal information, obtain root access, and install code remotely).

Now it's take even more strident measures to combat the attack, personally reaching out to affected users.  Google began executing its remote kill functionality on the malicious apps Saturday.

It also pushed out an update to affected users phones, which will remove the installed rootkit.  Google sent the following email [source] to the estimated 260,000 Android users:


We recently discovered applications on Android Market that were designed to harm devices. These malicious applications (“malware”) have been removed from Android Market, and the corresponding developer accounts have been closed.

According to our records, you have downloaded one or more of these applications. This malware was designed to allow an unauthorized third-party to access your device without your knowledge. As far as we can determine, the only information obtained was device-specific (IMEI/IMSI, unique codes which are used to identify mobile devices, and the version of Android running on your device).

However, this malware could leave your device and personal information at risk, so we are pushing an Android Market security update to your device to remove this malware. Over the next few hours, you will receive a notification on your device that says “Android Market Security Tool March 2011” has been installed. You are not required to take any action from there, the update will automatically run. You may also receive notification(s) on your device that an application has been removed. Within 24 hours of receiving the update, you will receive a second email confirming its success.

To ensure this update is run quickly, please make sure that your device is turned on and has a strong network connection.

For more details, please visit the Android Market Help Center.

The Android Market Team

The flaw that allowed the malware to gain root access without asking for permissions was actually fixed by Google with firmware update Android 2.2.1.  Unfortunately carriers have been extremely sluggish at rolling out updates for Android users, and this is the end result.

Google has repackaged the fix as an individual patch and given it to carriers and handset makers.  But it's up to carriers and their hardware partners to push it down to phone customers as the patch will have to be adjusted to individual hardware configurations.  

In other words Google's keeping busy killing the burglars in the house, but back door is still wide open.  At least it's doing something, though, and giving its customers the decency of communication.

Google is also taking steps to make sure similar malware doesn't reappear in the Android Marketplace.  While the company is vague on specifics, it writes:

We are adding a number of measures to help prevent additional malicious applications using similar exploits from being distributed through Android Market and are working with our partners to provide the fix for the underlying security issues.

According to professional hackers and security researchers, most phones and applications markets have the potential to be infiltrated by malware.  

For example, at Nicolas Seriot, a Swiss iPhone expert, has demoed [white paper] at the annual Black Hat conference an app called "SpyPhone", which showed off how easy it would be to sneak malware into the App Store.  It is unknown if this is being actively done, but Mr. Seriot's whitepaper offered obfuscation code that disguised disallowed strings, offering hackers a clear path to getting their malware into the App Store (the only other necessary steps would be a delayed activation of the malicious activity, and avoidance of using private APIs).

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

RE: Googles done decently
By Akrovah on 3/7/2011 10:59:27 AM , Rating: 3
And that is my #1 reason why I won't go with an Android., Even though almost everything about it is awsome the utter lack of timely system wide updates is a deal breaker for me.

RE: Googles done decently
By Stoanhart on 3/7/2011 4:54:00 PM , Rating: 3
So buy a Nexus phone. It's cheaper to pay full price and pay less per month than it is to get a "free" phone anyways.

RE: Googles done decently
By Murst on 3/7/2011 5:06:40 PM , Rating: 2
It's cheaper to pay full price and pay less per month than it is to get a "free" phone anyways.

What does this have to do w/ anything? You can buy all kinds of phones from T-mobile w/o the subsidy.

The Nexus S is $200 w/ a 2 year contract, and $530 without... pretty similar to other smartphones.

RE: Googles done decently
By Akrovah on 3/7/2011 6:29:39 PM , Rating: 2
The Nexus looks nice, but is only available on T-Mobile in the states, and T-Mobile mas terrible reception in my home town. I had to return my HD7 (which I friggin loved otherwise) because I couldn't make calls from home on it.

RE: Googles done decently
By Zoomer on 3/7/2011 7:46:47 PM , Rating: 2
So that's why I got an OTA update for my Desire back, erm, Nov?

RE: Googles done decently
By Akrovah on 3/8/2011 12:52:04 PM , Rating: 2
I never said there were no updaes, jsut a lack of timely updates, dependent completely on when the manufacturer and carrier get around to making them. As a result hoels like this go unplugged for an extended period of time.

And what version of Android did your desire get updated to? was it the latest version, or a signifigantly delayed and now out of date version?

"I modded down, down, down, and the flames went higher." -- Sven Olsen
Related Articles

Latest Headlines

Most Popular Articles5 Cases for iPhone 7 and 7 iPhone Plus
September 18, 2016, 10:08 AM
Automaker Porsche may expand range of Panamera Coupe design.
September 18, 2016, 11:00 AM
Walmart may get "Robot Shopping Carts?"
September 17, 2016, 6:01 AM
No More Turtlenecks - Try Snakables
September 19, 2016, 7:44 AM
ADHD Diagnosis and Treatment in Children: Problem or Paranoia?
September 19, 2016, 5:30 AM

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki