Google Removes Stolen Apps from Market

By Cindy Waxer March 02, 2011

Open your doors and you might be surprised by who – or what – walks in. That’s the lesson learned by Google, which recently had to remove publisher Myournet from its Android Market, along with its 21 trojan horse-bearing apps.

According to Android Police, Myournet and its ill-intentioned programmers borrowed pre-existing apps from fellow developers, inserted them with malicious code and then repackaged those apps as its own releases. The malware is capable of stealing all of the infected device’s data.

Reads a recent Android Police blog posting: “I asked our resident hacker to take a look at the code himself, and he’s verified it does indeed root the user’s device via rageagainstthecage or exploid. But that’s just the tip of the iceberg: it does more than just yank IMEI and IMSI. There’s another APK hidden inside the code, and it steals nearly everything it can: product ID, model, partner (provider?), language, country, and userID. But that’s all child’s play; the true pièce de résistance is that it has the ability to download more code. In other words, there’s no way to know what the app does after it’s installed, and the possibilities are nearly endless.”

Upon receiving notification from Android Police, Google immediately pulled the dangerous apps from its Android Market. However, the damage had already been done: nearly 200,000 downloads have been completed over the past four days.

Earlier this month, TechZone360.com reported Google’s unveiling of its Android Market Web store, which is the new version of its Android operating software, Honeycomb. Previously only accessible through use of an Android smartphone, you can now go to the Android Market site through a Web browser with other devices, including desktop computers, laptops, or tablets.

After logging into the site and signing in to your Google account, you can search through over 200,000- apps on the official Android Market, making app purchases through your browser. After purchasing, the apps will be installed directly to the desired smartphone device, using your choice of either WiFi or 3G connectivity.

Simply stated, you are still required to have an Android device to run the apps, but now you can download them to your device using a browser.




Edited by Tammy Wolf

TechZone360 Contributing Editor

SHARE THIS ARTICLE
Related Articles

ITEXPO's IBM Keynoter: AI is Here Today

By: Paula Bernier    2/20/2018

Many folks think the artificial intelligence is something we'll see in the future. That's true. AI will be employed in a broader variety of more sophi…

Read More

The Blockchain Event Draws a Crowd

By: Paula Bernier    2/20/2018

The Blockchain Event in Fort Lauderdale draws a crowd, offers some answers, and raises lots of interesting questions. Why have some cryptocurrencies g…

Read More

Hughes: WAN Optimization Expertise, Homegrown Solution Differentiate SD-WAN

By: Paula Bernier    2/16/2018

The SD-WAN marketplace is a crowded one. But Hughes Network Systems says it brings unique expertise and proven technology to the table. And that, Jeff…

Read More

Juniper Security Expert: Behavior Analytics Helps Address Threat Complexity

By: Paula Bernier    2/16/2018

Organizations are changing their cybersecurity strategies, says Juniper Networks Cybersecurity Strategist Nick Bilogorskiy, who presented the closing …

Read More

Welbitz Wins ITEXPO's Idea SHOWCASE

By: Paula Bernier    2/16/2018

It was a sweep. Both the audience and the judges at ITEXPO's IDEA Showcase Thursday picked Welbitz as the winner. The company went up against fellow s…

Read More