New Malicious Code Found, Infected Apps Suspended

June 15, 2011
5
31
8 23

Lately, new malicious encryption and/or code – known as Plankton – was identified on the Android Market creeping in and around various apps, thanks to a security researcher.

Surprisingly, it was found lurking inside some apps associated with Angry Birds. The one responsible for the code was smart enough to run it as a background service thus making it tough(er) to be detected. Once the malicious code gets on your device, its objective is to somehow hack your Android smartphone or tablet and give an unknown user access to your device remotely.

The malicious code was first identified by NC State University Computer Science professor Xuxian Jiang. Plankton is unlike any other code in that it does not utilize exploits in order to gain root access to the OS itself . Researcher Andrew Brandt even said, “Instead, the remote commands simply give an unknown criminal access to what some may consider sensitive data on the phone, including the browser history, bookmarks, and homepage settings in the built-in Android browser.”

As a result, Google acted immediately to contain and suspend apps infected with the malicious code. “We’re aware of and have suspended a number of suspicious applications from Android Market,” a Google spokesperson said. “We suspend apps and developer accounts that violate our policies.”

At this point in time, there are already ten apps with the malicious code identified in the market. Beware guys, you might have one of them.

Source: IT Pro

Comments