All the latest UK technology news, reviews and analysis
|
|
|
30 Jan 2012
Millions of Android users may have unwittingly installed a Trojan known as Android.Counterclank, making it the most widely distributed piece of malware on Google's smartphone operating system.
A group of three publishers have distributed Android.Counterclank within apps on the Android Market. It is a version of the older Android.Tonclank and has been found in 13 apps which have a combined millions of times.
"The combined download figures of all the malicious apps indicate that Android.Counterclank has the highest distribution of any malware identified so far this year." said Symantec in a blog post.
Symantec explained that the malicious code has been put into the apps inside a packet named "Apperhand" and that a compromised device can have data stolen or be made to carry out certain tasks without permission.
At the time of writing only five of the apps are still on the Android Market place, including Sexy Girls Photo Game and Deal & Be Millionaire. The latter has had between one million and five million installs in the past 30 days.
The Millionaire app page also reveals some strange permissions on installation, including access to the phones features which can determine the phone number and serial number of the phone.
One user reported seeing suspicious activity on their phone after installing the app, giving an insight into how it affects a device.
"It requests the ability to add/remove icons to your home screen! Upon running the game for the first time it adds a suspicious 'Search' icon to your home screen," they said.
Symantec confirmed the search icon as a sign of infection.
But Lookout, a firm which specialises in mobile security, had a different take on the situation, as it explained in a blog post.
"We disagree with the assessment that this is malware, although we do believe that the Apperhand SDK [software development kit] is an aggressive form of ad network and should be taken seriously," it said.
Symantec said it is still investigating the issue and will post further information as it becomes available.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
V3 examines the key strengths and weaknesses of Samsung's latest iPhone killer
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
On behalf of our client, a major player in the pharmaceutical...
Qualifications & Skills - Previous development...
Harvey Nash is currently recruiting a senior project...
URS supplies integrated engineering, environmental and...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Adaware
Its designed as a tool for adaware nothing more.The fact it can be used for malicious intent..........well you would ban a lot of Windows coding if it were seen in the same light wouldnt you?
Posted by: Archer 07 Feb 2012
It has been expected since public internet started.
The governments & government department has to have its own net work separate from the internet. If you are not connected one can not be infected. If a lone programer can do this what happens if the terrorist organization or a high flier covering it shortfall does the same. There are a lot of programmers in the 3 world or poor nations. Remember Miss Guillotine in the french revolution.
Posted by: ken fernandes 30 Jan 2012