New Android malware runs rings around Google Play security protocols

Brad Reed
Google actually starts setting standards for Android apps on Google Play

Symantec has discovered a new piece of Android malware, since removed from the Google Play store, that managed to chalk up between 50,000 and 100,000 downloads of malicious apps before being identified. In a post on his company’s blog, Symantec researcher Irfan Asrar details how the malware disguised itself as popular games such as Super Mario Bros. and Grand Theft Auto 3 Moscow City, and then delivered its payload in incremental downloads to make it harder to detect.

“What is most interesting about this Trojan is the fact that the threat managed to stay on Google Play for such a long time, clocking up some serious download figures before being discovered,” writes Asrar. “Our suspicion is that this was probably due to the remote payload employed by this Trojan.”

The good news: Unlike past Android malware, this particular Trojan likely won’t have any impact on Japan’s all-important annual girl-band election.


Related stories

Bizarre Android malware disrupts bizarre Japanese girl-band election

Numerous websites found to contain malware specifically targeting Android devices

Google introduces ‘Bouncer’ security system to keep malware out of the Android Market

Get more from Follow us on Twitter, Facebook