Follow Us

War on Error

Rogue Android apps are suddenly among us



After a long phoney war when a lot was said but nothing much actually happened, Android is finally facing the predicted surge in app criminality that its open software model invites.

This droid.jpgThis droid.jpgThis droid.jpgThis droid.jpg

The first Android malware landmark came as recently as August 2010 with Fakeplayer, followed in late December by the first significant example that was operating in the wild on any scale, Geinimi. A growing band have followed since then perpetrating click and SMS tariff fraud culminating in yesterday’s news that Google is reportedly kicking out at least 21 rogue apps from its Marketplace.

The apps in question might have been downloaded as many as 50,000 times by users and it doesn’t appear to be that Google noticed the issue first which raises questions about its app vetting.

In only weeks, the Android threat has gone from mostly theoertical to one that is affecting real people. It's a safe prediction that things will get worse before they get better.

Security companies at last have meaningful mobile threats to talk about after years and years of the issue being little more than a joke. Conveniently, all this comes at just the moment when desktop antivirus is starting to die in the face of a growing band of basic but free apps.

The positive message is that Android is not inherently more vulnerable than any other mobile operating system but its apps are because, unlike rival platforms, they can be downloaded from locations other than Google’s Marketplace.

The solution is for security companies to develop products that go beyond the awkward models they’ve applied to desktop protection, for instance, analysing and warning users about the permissions apps are asking for as they install. Such a program could also make it easy for users to remove apps before any damage is done - apps can be remotely uninstalled, a huge difference with Windows.

And users? They can’t easily judge which apps are bogus and which aren’t but they can at least be careful about which sites they get them from. If the malware trend continues, such sites are going to need careful management in order to stay credible.

And Google? It needs to wake up from its focus on software and features and remember the lesson of Windows, the last major software platform to let itself get overrun with malevolent apps. The legacy of that particular misstep is still all around us. 

Tags: android, antivirus, security

RSSSubscribe to this blog

More from Techworld

More relevant IT news

Contact Us

For editorial queries:
Mike Simons Mike_Simons@idg.co.uk

For website issues:
Email webmaster@techworld.com

For commercial queries
Russell Kearney russell_kearney@idg.co.uk


For more contact details click here.


Email this to a friend

* indicates mandatory field





Techworld White Papers

Optimising data protection for virtual environments

VM environments require the same level of data protection as does the physical server environment. Companies may use data protection tools built for the physical environment in the virtual world, but this has serious disadvantages.

Download Whitepaper

PCI Compliance: Are UK businesses ready?

Exploring the results of a recent survey, including: ? Levels of understanding of the standard ? Current perceptions of actual compliance status ? Attitudes toward addressing compliance

Download Whitepaper

Mobility Management for Dummies

Your complete guide to managing and securing mobile devices such as laptops and smartphones.

Download Whitepaper

Magic Quadrant for midrange and high-end NAS solutions

It is difficult to find one midrange or high-end NAS product that can cater to all needs. File systems embedded in NAS are often designed to solve one major pain point, with additional features being added later to broaden use cases and benefits.

Download Whitepaper

Techworld UK - Technology - Business

Oracle Video

Enabling agile and intelligent businesses

 Changing markets, competitive pressures and evolving customer needs are placing increasing pressure on IT to deliver greater flexibility and speed. Explore truly flexible SOA foundations with this Oracle video.

Watch
COLT White Paper

IT Misuse Survey

Complete this survey and you could win a Nexus One

Techworld are running a short survey to discover how UK businesses are managing Internet and email misuse in the Enterprise.

Complete Survey

Complete our survey and you could win a Sony E-book Reader.
Techworld have teamed up with HP to compile a survey relating to server virtualisation. Complete the short survey and you could be the lucky winner of a Sony E-book reader.

Complete the survey here

Site Map

Test