Slashdot Mirror

← Back to Stories (view on slashdot.org)

Over 60% of Android Malware Hides In Fake Versions of Popular Apps

Posted by Soulskill on from the 60-percent?-that's-almost-80-percent! dept.

An anonymous reader writes "Like any popular platform, Android has malware. Google's mobile operating system is relatively new, however, so the problem is still taking form. In fact, it turns out that the larger majority of threats on Android come from a single malware family: Android.FakeInstaller, also known as OpFake, which generates revenue by silently sending expensive text messages in the background. McAfee says that the malware family makes up more than 60 percent of Android samples the company processes."

24 of 111 comments (clear)

  1. McAfee is trying hard to get into this market by Terry+Pearson · · Score: 5, Insightful

    Meh...

    If you are not smart enough to install non-market Android apps, you have no problem.

    If you are smart enough to install non-market Android apps, you know what you are getting into.

    With great power comes great responsibility. I think these pieces keep surfacing because the Anti-Virus companies desperately need to get into this market. They see it is the future and they want a piece of it.

    1. Re:McAfee is trying hard to get into this market by icebike · · Score: 2

      If you are smart enough to install non-market Android apps, you know what you are getting into.
       

      Unfortunately, that is not true. If it did require smarts there wouldn't be a problem.

      There are far too many people that are duped into downloading from other than trusted sources.
      And it doesn't take a rocket scientist to check that box in settings that allows installation from untrusted sources. Most of these dodgy websites explain exactly what to check and uncheck to get their malware to install. Your average 14 year old teenager as well as your mom can make this change with four screen taps, and install the fake (but free) copy of an app in about 12 seconds flat.

      As always, buying from the Play Store or Amazon presents minimal risk, they will detect the malicious payload it before you even hear about it. (Yes there have been one or two situations where something snuck thru, but these are rare anomalies).

      Its simply greed on the part of handset owners to try to scam a $2.00 app for nothing.

      --
      Sig Battery depleted. Reverting to safe mode.
    2. Re:McAfee is trying hard to get into this market by mrbester · · Score: 2

      The Amazon App Store app isn't on Play so you have to sideload by checking the box in the first place. I haven't seen anything from Amazon saying you should uncheck it after installation for your own protection.

      --
      "Wait. Something's happening. It's opening up! My God, it's full of apricots!"
    3. Re:McAfee is trying hard to get into this market by farble1670 · · Score: 3, Informative

      I haven't seen anything from Amazon saying you should uncheck it after installation for your own protection.

      that's because if you uncheck it, amazon app store won't be able to install any amazon app store apps. amazon app store is not a privileged app. all of the apps you install via amazon app store are side loaded.

  2. NOT apps on Play by oGMo · · Score: 5, Informative

    Top of article:

    McAfee says that the malware family makes up more than 60 percent of Android samples the company processes.

    End of article:

    If you want to significantly reduce your chance of getting malware such as this one, only install apps from the official Google Play store. That being said, malware has snuck into the store before, so it can happen again.

    So in essence this article is a nearly-worthless scare piece. Unless you're downloading "pirated" versions of (presumably) commercial apps from a shady source, this article isn't relevant. But then, it's a McAfee article, so surprise.

    --

    Don't think of it as a flame---it's more like an argument that does 3d6 fire damage

  3. Re:Not a problem iOS users have. by geekoid · · Score: 3, Insightful

    And there is less crime we we force everyone to never go out.
    But, you enjoy your shiny toy and take whatever the deem you worthy of having.

    --
    The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
  4. Re:Not a problem iOS users have. by grocer · · Score: 3, Insightful

    Technically, not a problem for Android users who stay in Google's walled garden either. Now, we can debate the merits of walled gardens but the article itself is just trying to gin up business for McAfee and citing running unknown sources as evidence of some malware problem when the issue is the user, not the system, since that is off by default.

  5. How does an expensive SMS make them money? by Stiletto · · Score: 2

    Someone help me with that one. So it tricks users into sending an expensive SMS. So how in the world does that enrich the hackers? I pay my SMS fees to AT&T. Are we saying that AT&T is behind these attacks?

    1. Re:How does an expensive SMS make them money? by compro01 · · Score: 3, Informative

      Premium messaging services. Like those "text "joke" to 55555 for a joke of the day" ads on TV or donate-via-text things. The carrier pays them, and tacks that charge onto your bill.

      --
      upon the advice of my lawyer, i have no sig at this time
    2. Re:How does an expensive SMS make them money? by icebike · · Score: 3, Interesting

      The malware sets the phone to use third party SMS gateways
      Those gateways deliver the SMS message to the recipient's carrier, and bills that carrier for the service. You might be none the wiser, but your carrier is paying for that incoming message via bilateral agreements or "Hubbing".
       

      --
      Sig Battery depleted. Reverting to safe mode.
    3. Re:How does an expensive SMS make them money? by number11 · · Score: 4, Funny

      Premium messaging services. Like those "text "joke" to 55555 for a joke of the day" ads on TV or donate-via-text things. The carrier pays them, and tacks that charge onto your bill.

      Hmm.. The malware dials a premium number, and the carrier charges you and sends the money to the holder of that premium number. If we could just track down who that is, we could find out just how much ill-gotten gains they've received. If there was just a way to identify them.

    4. Re:How does an expensive SMS make them money? by ThatsMyNick · · Score: 4, Informative

      And you can block these too. Call your carrier and ask from them to disable Third Party Billing. I know AT&T and Verizon do it for you, when you ask. No more "premium sms charges", no more "premium sex line charges"

  6. The solution, of course... by NoobixCube · · Score: 2

    The solution, of course, will be to buy Macafee's Android security offerings.

    --
    Admit it. You post strawman arguments as AC so you get modded Insightful for refuting them, rather than Troll
  7. Yet another reason SMS should die by Anonymous Coward · · Score: 4, Insightful

    It's 2012 - most phones can connect to a mail server over 2G, 3G or wifi.

    Why are we still messing around with a 140-character hack that belongs in the 1990s and which requires the recipient to be using a phone?

    Just send an e-mail.

    1. Re:Yet another reason SMS should die by ThatsMyNick · · Score: 2

      Because email is pull based and sms is push based.

    2. Re:Yet another reason SMS should die by farble1670 · · Score: 2

      email and IM are pushed based as well. it's push based at a higher level in the software stack but the end user doesn't care. well, they care because the email is free and the text is not (often, in the US).

  8. Re:Not a problem iOS users have. by BasilBrush · · Score: 2

    Android does not have >80% market share. It's something just over 50%. Windows had more than 95% at it's peak. So no, that wasn't the point of similarity. The point of similarity is it's a Typhoid Mary platform.

    iOS isn't prone to malware and it's because of it's walled garden and app sandboxes, not because of marketshare.

  9. Legitimate app store is much better? by Anonymous Coward · · Score: 2

    Some of the legitimate apps at the legitimate app store have messed up policies as well:

    Mass Effect Infiltrator: needs to be able to change network connectivity, modify system settings, read phone status and ID and be able to read my contacts. Why?

    Order & Chaos online: needs to be able to edit text msgs, read txt msgs, receive txt msgs, change network connectivity incl connecting+disconnecting from wi-fi, disable my screen lock, send SMS messages, read phone status and ID, and run at startup. Why?

    I skipped buying either of these even when they were priced at $0.25 because of the bizarre permission policies.

  10. Re:Not a problem iOS users have. by ThatsMyNick · · Score: 3, Informative

    Rooting an iphone and installing apps from strange sources in Android are both like living in the ghetto. Using an unrooted iPhone is like living in a jail (mmm, I wonder where I got this analogy from.). Using Android and installing apps only from Play Store, Amazon store, and app you write/your friends write, is the real equivalent to living in a decent neighborhood.

  11. Re:Not a problem iOS users have. by scot4875 · · Score: 2, Funny

    Android is living in a ghetto.

    Honest question:

    Does describing Android this way make you feel better about your iPhone purchase?

    --Jeremy

    --
    Jesus was a liberal
  12. Re:Not a problem iOS users have. by Nerdfest · · Score: 2

    "The answer is a single walled garden" is the part that amazes me. Walled gardens, or peer reviewed software are good answers, but a single one? I'm utterly amazed that people will voluntarily pay a lot of money to be locked into a single software market on hardware from a single supplier. It very rarely ends in a happy consumer in the long run. Why not allow alternative markets? Make people *want* to use your software market, don't force them to.

  13. Re:Not a problem iOS users have. by BasilBrush · · Score: 2

    You can't have it both ways. You can't cite the multiple stores of Android as an advantage, and then say that it's the user's fault they get viruses when they use these multiple stores.

  14. Thoughts of an Android developer by nomad-9 · · Score: 2

    If the majority of people catching malware are cheap bums who wanted pirated versions and end up paying much more in background messaging, , then it's all good, as far as I'm concerned.

    Some say they first try the pirated versions for any problems before buying the real ones... Here's the thing:

    - most Android apps don't cost more than a cup of coffee. Pretty cheap, considering the long hours of work needed to get some type of decent software on that platform.

    - at Google Play, you can try an app for 15 minutes before getting an automatic cancel of your order.
    http://support.google.com/googleplay/bin/answer.py?hl=en&answer=134336

    15 minutes is plenty of time to check if everything works as intended on your particular phone. If you discover a bug later on, you can always contact the developers who will be more than happy to make their app better on the next version.

    I can't feel sorry for cheaters who get malware . Piracy is one reason (among others) why most Android developers can't make a living selling apps. It's already hard enough when you're not a big company and can't afford the advertising, and find your app on page # 120 on app search...

  15. Re:Not a problem iOS users have. by BasilBrush · · Score: 2

    Actually, it's what you are saying that isn't true. It's clear you have never been an iOS developer.

    I've had apps rejected 3 times. Once it was a crasher bug that the reviewer spotted that I hadn't. (Mea culpa). Once was a wording issue. And one was a button that in a certain edge case should have been disabled and wasn't.

    In each case the problem was spelled out clearly. Clearly I had to stop that crash, disable that button in that certain circumstance, and change the wording. Now of clearly they didn't tell me what wording I had to use - that's my job. They just told me what was wrong with the wording I'd originally used.

    Apple App Store has 700,000 apps on it. Most of those apps have had several revisions. Each and every revision of those apps has been through the app review process. The examples you've read stories about are a handful. A process gets it right hundreds of thousands of times more often than it gets it wrong doesn't sound broken. Especially when there's opportunities for resubmission and appeal.