Malicious files once again have found their way into the Android Market, with a set of applications being hijacked, reverse engineered with malicious code injected, and published alongside the legitimate applications.
Two thing need mention up front -- Google has already removed the apps from the Market, and this time around they only affected users in China, where they also originate from. If you're reading this story, you probably are safe and never were at risk. But this is still a big concern. A set of bad guys (that's my safe-for-work version) were able to de-compile apps from a legit developer, put in some code that sends SMS messages to a Chinese subscription service, and then took some really ingenious steps to keep everything hidden from the user. That's going to happen, because everything that's electronic and popular enough is a target. The part that is concerning is that these are making their way into the Android Market.
Allow me to have a few hundred words with you about it, after the break.
Source: AegisLabs via Sophos; Thanks, Tony Bag o' Donuts!
HCL TECHNOLOGIES HEWLETTPACKARD HIGH TECH COMPUTER HON HAI PRECISION IND
No comments:
Post a Comment