Malware makers have released a Trojan version of an Android clean-up tool released by Google earlier this week. Google pushed a security update (kill switch) that purged the DroidDream Trojan from infected handsets last weekend. DroidDream found its way onto the official Android marketplace, typically under the guise of mobile …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Thursday 10th March 2011 12:10 GMT david 63

Confused

...

Google pushed a security update (kill switch) that purged the DroidDream Trojan from infected handsets last weekend.

...

That stopped further infections from spreading but failed to help eradicate the infection from already compromised handsets...

As a soon to be Android owner, what am I missing here?

0 1
1. Thursday 10th March 2011 12:33 GMT Gannet
  
  RE: Confused
  
  I take it that the kill switch would have wiped the infected apps from handsets that had downloaded them from the official marketplace. And the Cleanup Tool is destined for those people who downloaded the infected apps from third-party sites?
  
  0 0
2. Thursday 10th March 2011 13:06 GMT Craig 8
  
  > As a soon to be Android owner, what am I missing here?
  
  The original malware (downloaded from the legitimate Android Market) rooted the device, and was able to install other software from places other than the Android Market. Google can remove the original malware, but not any of the other software it may or may not have installed in the meantime.
  
  1 0
  1. Thursday 10th March 2011 13:46 GMT david 63
    
    Thanks peeps.
    
    I get it now.
    
    0 0
3. Thursday 10th March 2011 14:13 GMT Pavlov's obedient mutt
  
  missing..
  
  As a soon to be Android owner, what am I missing here?...
  
  that you should rather get an iPhone 4
  
  we're back to the old Windows days (android) / 60's sex days and the consequences of both
  
  0 4
4. Thursday 10th March 2011 16:15 GMT pan2008
  
  it;s clear
  
  Get a blackberry, or a Windows phone or an iphone. Plenty of choices for all budgets.
  
  0 2
Thursday 10th March 2011 13:06 GMT Chas

WTF?

And people bitch about Apple's curated App store.

0 2
1. Thursday 10th March 2011 14:14 GMT MrWibble
  
  But...
  
  This malware isn't available in the market... Only from external sources.
  
  3 0
Thursday 10th March 2011 13:21 GMT LPF

If this was iPhone

The Inq would would be making this front page stickied news, but becuase its about Android , you barely hear a whisper!

2 2
1. Friday 11th March 2011 10:36 GMT Anonymous Coward
  
  @LPF
  
  Not really, there have been (and still are in non-updateable iOS devices) a number of serious vulnerabilities in iOS which also allow complete compromise of the device simply by visiting a malicious or compromised website - no need to install an App and ignore a warning about it not being checked or approved by Google.
  
  I'm sure you won't believe this, but they are well documented by security sites eg ISE - never a whisper in the mainstream media about it.
  
  0 0
Thursday 10th March 2011 14:32 GMT doperative

Bgserv-A and compromised handsets

> Bgserv-A lifts the IMEI and the phone number from compromised handsets, uploading this information to a remote hacker-controlled server ..

Can Bgserv-A run on non-compromised handsets?

0 0
Thursday 10th March 2011 16:51 GMT David 164

confusing article.

doperative

I think so, what I got from the article is that Google release there back-door virus, design to seek out handsets with the rogue applications which contained the original malware and delete them.

The hackers manage to keep a version of google purging software, which is suppose to be self deleting and reversed engineer it so that it can penetrate any Android device and instead of deleting software, it create a back door and share you phone numbers with a server and create a way for the hand sets to receive SMS messages and probably other Malware..

That what I got from a difficult to understand article.

I will have to go to other sources and see if this interpretation is right.

1 0