Last week, Google launch an surprising confidence beginning by releasing a own “Android Market Security Tools Mar 2011? to mislay a trojan DroidDream from putrescent users Android phones as well as devices. The movement was surprising in which it was instituted by Google itself, rsther than than expelled to mobile operators who, in turn, pushed it out to customers.
Now, attackers appear to be regulating Google’s recover as a latest conflict vector: Symantec has voiced which latest Android malware (which is has dubbed Android.BGserv) is present as well as posing as Google’s bona fide confidence update. The feat seems to be set up to send SMS messages in reply to commands it can embrace from a command-and-control server, nonetheless so distant it doesn’t appear to have been activated. Symantec says a malware was found in an “unregulated third-party Chinese marketplace.”
However, what might be most meddlesome about this malware is which it appears to be formed on an open source plan hosted during Google Code as well as accessible to any one underneath a conditions of a Apache License.
The DroidDream trojan uses dual exploits to download executable formula to Android devices. Although Google bound a vulnerabilities in Android 2.2.2, most Android users have not perceived updates from their carriers yet, as well as most comparison Android inclination will not be updated to a newer software. Google’s Android Market Security Tool Mar 2011 does not essentially vegetable patch a disadvantage on these devices, though does mislay a DroidDream malware.
{ 0 comments… add one now }
Leave a Comment