Ai descarcat aplicatiile infectate pentru Android? Google are solutia!

Va atentionam acum cateva zile asupra unor aplicatii malitioase (in numar de 58) care fusesera postate in Android Market. Acestea au fost descarcate de peste 260000 utilizatori.

Acestea contineau troieni fiind copii ale aplicatiilor originale apartinand unor dezvoltatori legitimi.

Un exemplu de astfel de aplicatie copiata a fost Super Guitar Solo, care continea un exploit popular (“rage against the cage”) – adesea folosit pentru “root-area” telefoanelor cu Android – cu rolul de a obtine drepturi de administrator (superuser) pe telefonul mobil infectat. Odata obtinute aceste drepturi, aplicatia putea lansa comenzi care nu necesitau acordul utilizatorului.

Daca sunteti printre cei 260000 de ghinionisti, Google a lansat o actualizare de securitate. De asemenea a trimis un e-mail asemanator celui de mai jos tuturor celor care au descarcat aplicatiile infectate:

You are receiving this message to inform you of a critical issue affecting your Android Market account.
We recently discovered applications on Android Market that were designed to harm devices. These malicious applications (“malware”) have been removed from Android Market, and the corresponding developer accounts have been closed.
According to our records, you have downloaded one or more of these applications. This malware was designed to allow an unauthorized third-party to access your device without your knowledge. As far as we can determine, the only information obtained was device-specific (IMEI/IMSI, unique codes which are used to identify mobile devices, and the version of Android running on your device).
However, this malware could leave your device and personal information at risk, so we are pushing an Android Market security update to your device to remove this malware. Over the next few hours, you will receive a notification on your device that says “Android Market Security Tool March 2011” has been installed. You are not required to take any action from there, the update will automatically run. You may also receive notification(s) on your device that an application has been removed. Within 24 hours of receiving the update, you will receive a second email confirming its success.
To ensure this update is run quickly, please make sure that your device is turned on and has a strong network connection.
For more details, please visit the Android Market Help Center.
The Android Market Team

Problema a afectat doar versiunile Android 2.2.1 si anterioare.

voluntar al Comodo Malware Research Team, expert Malwarebytes Anti-Malware

Leave a Reply