Another day another android Trojan.
More subtle and embedded deeper than before.
You'd think by now Android would have been made a little more secure?
Russian security researchers are warning about an Android Trojan called Oldboot that has infected 350,000 devices worldwide. According to this post at Dr Web, Oldboot has a characteristic that makes it hard to deal with: some of the Trojan's components are loaded into the boot partition of the Android file system. By acting as …
"The bootkit operation of Oldboot leads Dr Web to suggest that it's being distributed via corrupted firmware that victims are using to reflash their devices. "
So, devices in which the user himself has installed dodgy firmware from unverified source..is that really a vulnerability in Android? No mention of specific devices, so probably targeting the no-name Chinese tablets, the android fragmentation protecting the rest of the population. Being relatively open source, easy to create malware, and then easy to detect and later easier to deal with.