It’s seems there is no end to Google’s Android security woes. After its recent ransacking by malware, the Android Market is now a being threatened by the very tool the search giant released to eradicate the problem.
The Android Market Security Tool, which Google automatically pushed to devices that downloaded and installed fouled applications, has been discovered lurking in an unregulated Chinese apps market with a nasty surprise. According to antivirus specialist Symantec, it has been “trojanised” with malicious code that can be used to send secret SMS messages whenever instructed by a remote server.
Worse yet for Google, the code used in it was supposedly derived from a project hosted by Google Code and is licensed under the Apache license.
The onslaught of 58 infected apps, which hit the Android Market last month has affected an estimated 260,000 devices. The Android Market Security Tool was released on March 3rd to wipe them from existence.
Google has yet to comment on what actions it plans to take against the discovery, but in the meantime users are strongly advised to not download anything from third-party Chinese app stores.
Was this article helpful?