PDA

View Full Version : Google disables Android malware



AntZ
03-08-2011, 12:20 PM
Google disables Android malware

By Joseph Menn in San Francisco

Published: March 7 2011 19:33




Google is remotely disabling malicious software that deceived more than a quarter of a million owners of Android smartphones, as the outbreak continues to raise questions on the company’s approach to security.

It is the first time Google has had to reach into already-purchased phones to remove dangerous applications that customers have voluntarily installed.

The company has always kept the ability to do so as part of its licensing agreement with manufacturers and last year it wiped Android phones of a security researcher’s experimental program that was harmless but designed to demonstrate flaws in the system.

Google quietly revealed its latest action in a blog post late on Saturday night, saying no user data had been compromised by the more than 50 rogue applications and that customers would be notified by late on Tuesday if their devices had been cleaned.

The company declined to detail the steps it was taking to remove the malware. Nor did it say how many phones had been infected or which handset models had been targeted with the most success, but a person familiar with the countermeasures said about 260,000 devices had installed the bad programs. The person said the unknown attackers, who had copied legitimate applications in the official Android Market, added code giving them the ability to take control of the phones, then offered the doctored versions for download to the public.

Google said on its blog that staffers were “adding a number of measures to help prevent additional malicious applications using similar exploits from being distributed through Android”.

Security researchers said they did not expect Google to move to a curated system like that used by Apple, which scrutinises applications before allowing them to be distributed through its online app store.

“This is the way they have chosen,” said Mikko Hypponen, chief technology officer at Finnish security provider F-Secure. “As a result, they are likely to see more malware attacks than, say, the iPhone.”

John Pescatore, Gartner security analyst, said Google should change to a more controlled store, especially if it wanted companies to permit employees to buy Android phones for work. “If Google wants to mirror Apple’s success in getting Android into the marketplace, they have to do something about this,” he told the Financial Times.

Apple’s iPhone has been targeted in the past by malware that tries to steal from online accounts, but only devices that have had restrictions on the software removed are vulnerable.

Previous hacking attempts on Android, which has passed Apple’s iOS as the most-used smartphone software in the US, had also been limited to applications distributed via unofficial channels, such as those aimed at helping users find copyrighted content.

___________________________


Cool!

Google has open access right into your phone! Good thing it's a company with a long history of trust and privacy! :dance:

Foxdana
03-08-2011, 12:24 PM
Thats really scary! Imagine that in the wrong hands!!

redred
03-08-2011, 01:42 PM
am i right in thinking this problem is only on the 2.3 gingerbread system ?