ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

Google Android Market malware problem escalates

By | July 12, 2011, 11:33am PDT

Summary: Researchers at Lookout Mobile Security have again nabbed variants of the DroidDream malware family in the Android Market.

Google’s inability to keep malware-laden apps out of the Android Market continues to be a source of embarrassment for the fast-growing mobile operating system.

Researchers at Lookout Mobile Security have again nabbed variants of the DroidDream malware family in the Android Market. This time, the company found four different Android apps published by a developer named “Mobnet.”

[ SEE: Malware sneaks by Google's Android Market gatekeepers ]

The infected applications include:follow Ryan Naraine on twitter

  • Quick FallDown
  • Scientific Calculator
  • Bubble Buster
  • Best Compass & Leveler Note: There is legitimate application that has a package name similar to that of Best Compass & Leveler.  The Trojanized application capitalizes the package name (i.e. com.gb.CompassLeveler), while the legitimate application does not (i.e. com.gb.compassleveler).
According to Lookout, the malware was available in the Android Market for a short period of time so the number of downloads was limited to 1000 – 5000.
Google has since removed the malicious apps but it is clear the company needs to implement some rudimentary malware checks before an app is made available in the Android Market.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Google Inc., Android Market, Google Android, Malware, Trojanized Application, Spyware, Adware & Malware, Cyberthreats, Viruses And Worms, Security, Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues.

Disclosure

Ryan Naraine

The most important disclosure is of my employment with Kaspersky Lab as a member of the global research and analysis team. Kaspersky Lab is a global company specializing in anti-malware and secure content management technologies. I do not own stocks or other investments in any technology company.

Biography

Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content management technologies.

Prior to joining Kaspersky Lab, Ryan was Editor-at-Large/Security at eWEEK, leading the magazine's and Web site's coverage of Internet and computer security issues and managing the popular SecurityWatch blog, covering the daily threats, vulnerabilities and IT security technologies. He also covered IT security, hacker attacks and secure content management topics for Jupiter Media's internetnetnews.com.

Ryan can be reached at naraine SHIFT 2 gmail.com. For daily updates on Ryan's activities, follow him on Twitter.

22
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Google Android Market malware problem escalates
FAULKNE 13th Oct
Good day to confirm this comment I would appreciate T h e b e s t o f Z D N e t d e l i v e r e d your website very nice to everyone Yes, Oracle is the only one with shared-disk architecture, but that is there advantage. It means you can add or remove nodes and the database lives on. In a shared nothing architecture, if you lose a node, you lose the system. I'm sure Oracle appreciates EMC highlighting their advantage.I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate Awesome post! Thank you very much || thanks for nice content this is really benefit to me.
View in thread
0 Votes
+ -
Clearly they don't care. They haven't even offered up a plan
Johnny Vegas 12th Jul
to prevent it...
0 Votes
+ -
This will be Amazon's strength.
Bruizer 12th Jul
@Johnny Vegas

When they release a tablet, Amazon's curated Market is just another reason the Amazon tablet (if/when it appears) will not be a "Google" branded device with Google services.
0 Votes
+ -
RE: Google Android Market malware problem escalates
lovedong 13th Sep
Good luck to you and than you. replica watches
0 Votes
+ -
RE: Google Android Market malware problem escalates
hopp64 12th Jul
They are google, why would they care. Your information to sell to the highest bidder, Do No Harm, yeah right.
0 Votes
+ -
RE: Google Android Market malware problem escalates
dhmccoy 12th Jul
I suspect that they don't want the responsibility. From what I've read, many Android users blame the users.

I think that the platform bears some responsibility, no different than steps take to try to make Windows more secure.
0 Votes
+ -
don't worry that's just FUD
Linux Geek 12th Jul
peddled by Apple and M$ against their nemesis.
0 Votes
+ -
RE: Google Android Market malware problem escalates
Rabid Howler Monkey 12th Jul
@Linux Geek

com.gb.CompassLeveler (trojanized)
OR
com.gb.compassleveler (legitimate)

What's an ordinary user to do? This is TOO easy for the miscreants. Why on earth (or anywhere else in Google's mapped universe) hasn't Google implemented case-insensitive naming for apps in the Android Market. At least Windows, being case-insensitive, would force the miscreants to misspell, or add characters to, the name of the trojanized app. For example, com.gb.compassleveleripwnu.
0 Votes
+ -
RE: Google Android Market malware problem escalates
Linux Geek 12th Jul
@Rabid Howler Monkey
because only lame and ignorant people don't know that in Linux casing is important unlike windoze. They get what they deserve!
0 Votes
+ -
RE: Google Android Market malware problem escalates
Zheldon 12th Jul
One would think that obtaining software from the marketplace, as opposed to someone's site, would be safe.
0 Votes
+ -
RE: Google Android Market malware problem escalates
sharkboyjohn 12th Jul
I like the Amazon Market. Less apps but better quality. Also the free paid app a day thing is cool. I hope to see other companies step up and create app stores. Competition drives innovation and benefits consumers. Walled gardens only benefit the one building the wall.
0 Votes
+ -
RE: Google Android Market malware problem escalates
panoslondon1 12th Jul
No further comments! Sent from my virus, malware free Windows phone.
0 Votes
+ -
RE: Google Android Market malware problem escalates
dunners6 12th Jul
Might I just add, the people who installed the so called "infected apps" gave the application permission to "Allow an application to send SMS messages, (which might cost you money)".
If you give a "Scientific Calculator" permission to send SMS's, i'm sorry more fool you.
0 Votes
+ -
Closed systems...
qjames 27th Jul
...don't look so bad now. If control means safety then what is wrong with companies like Apple keeping control.
0 Votes
+ -
RE: Google Android Market malware problem escalates
MrElectrifyer Updated - 1st Aug
@qjames
The problem is Apple's method of control is far to much. Their control limits the capabilities of the device way below that of a dumb phone in some scenarios.

A clear example is simply the inability to create groups to organize your contacts. That's available on majority of dumb phones from the 1980s shocked

iPhone 3GS user hear wink
0 Votes
+ -
RE: Google Android Market malware problem escalates
MACKENZI 10th Sep
I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate! nccma cooler
0 Votes
+ -
RE: Google Android Market malware problem escalates
MARAGARET 11th Sep
I used to be more than happy to seek out this internet-site.I wanted to thanks in your time for this glorious read!! I positively enjoying each little bit of it and I have you bookmarked to check out new stuff you weblog post. this thread is amazing i like your work and i appreciate you that you have share a useful stuff thanks for sharing the i shop abatwa
0 Votes
+ -
RE: Google Android Market malware problem escalates
RHIANNONA 13th Sep
I used to be more than happy to seek out this internet-site.I wanted to thanks in your time for this glorious read!! I positively enjoying each little bit of it and I have you bookmarked to check out new stuff you weblog post.Bookmarking now thanks please consider a follow up post. power sa shop
0 Votes
+ -
RE: Google Android Market malware problem escalates
SATURNINA 13th Sep
I think the representation of this article is actually superb one. This is my first visit to your site. Thanks a lot and keep sharing the information. Keep updating the information for all of us. Thanks ZDNet Government was launched as the brand's first industry vertical, with a mission to cater to IT professionals in the public secto I agree with your post. However, do you have any sources I can cite for my paper wheel car com bury
0 Votes
+ -
RE: Google Android Market malware problem escalates
TOCCAR 25th Sep
Well welcome, hopefully you can become a vital member of the community and really help to push far ahead of google. Which Im sure the development team would love. This will of course earn you alot points too and get you on the leaders board. z d n e t t h a n k Im not sure i come to an agreement with you on every level, howevor it absolutely was a good posting, many thanks for taking the time to put up your ideas.
0 Votes
+ -
RE: Google Android Market malware problem escalates
CLAUDET 26th Sep
This is my first visit to z d n e t site. Thanks a lot and keep sharing the information. Keep updating the information for all of us.how can i clean up, because i don???t know why it seems my skeen has to fat i get the glasses dirty every day.i search y a h o o Very good quality indeed. I surely recommend it. The template used in their site is also great.
0 Votes
+ -
RE: Google Android Market malware problem escalates
MEJIAHA 29th Sep
Fantastic news about the new release.I positively enjoying each little bit of it and I have you b o o k m a r k e d to check out new stuff you weblog post.Im not sure i come to an agreement with you on every level, howevor it absolutely was a good posting, many thanks for taking the time to put up your ideas
0 Votes
+ -
RE: Google Android Market malware problem escalates
FAULKNE 13th Oct
Good day to confirm this comment I would appreciate T h e b e s t o f Z D N e t d e l i v e r e d your website very nice to everyone Yes, Oracle is the only one with shared-disk architecture, but that is there advantage. It means you can add or remove nodes and the database lives on. In a shared nothing architecture, if you lose a node, you lose the system. I'm sure Oracle appreciates EMC highlighting their advantage.I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate Awesome post! Thank you very much || thanks for nice content this is really benefit to me.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix