Android smartphones are infected!
Elena Vnorovscaia / Chişinău / Moldova.ORG / -- Malware is a real rising threat for smartphone owners who uses the Android operating system.
Apparently, a lot of the Android applications have a pretty severe leakage problem.
A security firm Dasient studied 10,000 applications for Android smartphones and found that more than 8 percent of the applications are transmitting personal user data to unauthorized computers.
This form of malware is designed to take control of a user’s smartphone. “It’s transparent a developers were not holding caring with user’s private information,” Dasient expert said.
For instance, 11 of the malware-filled applications automatically sent text messages to entire contact lists, much like email spammers taking control of someone’s account. “Some of these applications, once started, were sending premium SMS messages. The user ends up paying for those messages, and they can be pretty expensive. It’s sort of like the old 900 number scams, where if you called once, your phone would continue to incur the charges over and over again”, says Neil Daswani.
Dasient CTO Neil Daswani also stated that the amount of infected applications has doubled over the last two years. It’s also possible that users are unknowingly installing malware when visiting a site. These efforts are called “Drive-By Downloads” because the user isn’t installing anything on purpose, but rather surfing or “driving-by”.
Web-based threats, such as drive-by attacks, have so distant been singular to a desktop, though Dasient CTO Neil Daswani pronounced his firm will denote a latest Android phone attack during a Black Hat 2011 confidence discussion in Las Vegas subsequent month.
“These applications need to be coded and built some-more delicately if indeed we wish mobile applications to say a trust of users”, noticed Dasient CTO Neil Daswani.
Drive-by downloads will likely be buried in the most popular applications, such as those listed at the top of the Android Marketplace numbers, Daswanie suggests. A mobile attack earlier this year promised a cheat to the popular and frustrating game Angry Birds, which is one of the most frequently-downloaded applications on the Droid.
The lack of regulation in the Android Market puts a portion of the blame on Google. While developers don’t have to put up with the long wait times of the Apple App Store approval process, the price of this freedom comes at the user’s expense. Without even the most basic security screening to make sure the application is free of malware, Google may watch the Android Market become riddled with more malware if the growth rate continues to rise over the next two years.
Beyond personal user data, the malware often leaks the IMEI number (specific to the phone) and the IMSI number (specific to the subscriber). With this information leaked to unauthorized servers, the SIM card in the phone can be cloned easily by the recipient or the data is likely sold in bulk to illegal organizations that create cloned phones.