Google: BadNews Malware Wasn't Really Bad, After All

← Back to Stories (view on slashdot.org)

Google: BadNews Malware Wasn't Really Bad, After All

Posted by Unknown on Monday June 10, 2013 @10:50AM from the mundane-bad-news dept.

chicksdaddy writes "When reports surfaced about 'BadNews,' a new family of mobile malware that affected Google Android devices the news sounded — well — bad. BadNews was described by Lookout Mobile Security as a new kind of mobile malware for the Android platform-one that harness mobile ad networks to push out malicious links, harvest information on compromised devices and more. Now, six weeks later, a senior member of Google's Android security team claims that BadNews wasn't really all that bad, after all. Speaking at an event in Washington D.C. sponsored by the Federal Trade Commission, Google employee and Android team member Adrian Ludwig threw cold water on reports linking BadNews to sites that installed malicious programs. The search giant, he said, had not found any evidence linking BadNews to so-called SMS 'toll fraud' malware."

24 comments

Min score:

Reason:

Sort:

And what else did you expect? by Anonymous Coward · 2013-06-10 10:55 · Score: 2, Interesting

This just in: Vendor claims malware isn't as bad as people say. Film at 11.
Did anyone really expect them to say different?
1. Re:And what else did you expect? by Anonymous Coward · 2013-06-10 11:03 · Score: 0
  
  Now, come on. All Google is saying is that it isn't all BadNews ;-)
  All malware is bad. Sure, it could be catastrophic, but it could also just serve as a trojan for other pieces of malware. This one doesn't turn out to be as bad as the press makes it sound (big surprise), and Google claims it isn't anything much to worry about (another big surprise). So we know that the truth lies somewhere in the middle.
2. Re:And what else did you expect? by Anonymous Coward · 2013-06-10 11:13 · Score: 0
  
  On the other hand: anti-malware vendor claims new malware worst ever. Fox News at Ten (not to be confused with Fox News Channel).
3. Re:And what else did you expect? by Anonymous Coward · 2013-06-10 11:25 · Score: 0
  
  i farted
4. Re:And what else did you expect? by Impy+the+Impiuos+Imp · 2013-06-10 11:47 · Score: 1
  
  This. The ball's back in the antivirus/security guy's court to put up or slink away as a hack.
  
  --
  (-1: Post disagrees with my already-settled worldview) is not a valid mod option.
5. Re:And what else did you expect? by OhSoLaMeow · 2013-06-10 11:51 · Score: 2
  
  Now, come on. All Google is saying is that it isn't all BadNews ;-)
  All malware is bad. Sure, it could be catastrophic, but it could also just serve as a trojan for other pieces of malware. This one doesn't turn out to be as bad as the press makes it sound (big surprise), and Google claims it isn't anything much to worry about (another big surprise). So we know that the truth lies somewhere in the middle.
  Maybe if we told you the "bad" news in a "good" way...
  
  --
  They can take my LifeAlert pendant when they pry it from my cold dead fingers.
6. Re:And what else did you expect? by stephanruby · 2013-06-10 12:00 · Score: 4, Insightful
  
  Did anyone really expect them to say different?
  I didn't.
  The application asked for permission to send sms (and potentially cost you money).
  It's not malware if it tells you exactly what it's going to do, and then does it with your explicit permission (not that it even did that since it was only a proof-of-concept app). It's only a malware app if someone else has temporary possession of your phone, plus its pin number, and then installs the application just to cause you harm without you knowing.
  And this is actually nothing new to Android users.
7. Re:And what else did you expect? by Anonymous Coward · 2013-06-10 13:41 · Score: 0
  
  In this case "the vendor" is a big fan of data mining and probably just doesn't give a damn.
8. Re:And what else did you expect? by Anonymous Coward · 2013-06-10 15:51 · Score: 1
  
  This is the biggest reason why I won't be moving to Android anytime soon. On iOS, it'll ask for permission when it needs to send something, and I can stop it. There are plenty of apps that require permissions that I only want to give access to occasionally. If an app wants access to my pictures, I tell it what pictures it can access. Same with contact information. Giving apps blanket access at install time is brain dead.
9. Re:And what else did you expect? by tangent3 · 2013-06-10 19:59 · Score: 1
  
  This just in: Anti-malware vendor claims malware is worse than it actually is. Film at 11.
  Did anyone really expect them to say different?
10. Re:And what else did you expect? by DrXym · 2013-06-10 20:09 · Score: 1
  
  The up front permissions is better than nothing but it's not good enough.
  Android really needs to ask the user to grant / deny a permission each time it is accessed, with a checkbox to remember the decision. Some apps can be incredibly annoying, such as Facebook which is constantly turning on GPS which saps battery power. I should be able to disable that permission and force it to use a less precise location system or none at all. Another app might have a genuine need to launch the dialler, to call someone in its contacts list, but I want to be asked each time just so it doesn't surreptitiously dial a premium number in Ghana during the night. Perhaps for numbers, it's the number which is added to a whitelist when I say remember the decision. And so on.
  Apps might also have installed broadcast receivers / services which might hit permissions. They could be suspended until I grant / deny the permission they require. Perhaps I can completely disable these receivers / services from running at all except when their app is in the foreground.
11. Re:And what else did you expect? by AliasMarlowe · 2013-06-11 00:42 · Score: 1
  
  All Google is saying is that it isn't all BadNews
  Or merely that it would be WorseNews if BadNews were VeryBadNews.
  
  --
  Those who can make you believe absurdities can make you commit atrocities. - Voltaire
but but but... by ADRA · 2013-06-10 11:00 · Score: 3, Funny

How can we flame you if there's no story!! Wahh!

--
Bye!
1. Re:but but but... by Anonymous Coward · 2013-06-10 11:04 · Score: 1
  
  Since when did reason ever get in the way of a good flame war?
2. Re:but but but... by icebike · 2013-06-10 11:18 · Score: 1
  
  How can we flame you if there's no story!! Wahh!
  You can flame someone for jumping the gun perhaps?
  With not a shred of evidence it appears that Lookout actually precipitated this stampede, and Google followed suit.
  
  --
  Sig Battery depleted. Reverting to safe mode.
3. Re:but but but... by Anonymous Coward · 2013-06-10 11:33 · Score: 0
  
  What's wrong with the usual baseless way?
Always a potential vector. by Darkness404 · 2013-06-10 11:23 · Score: 1

Ad networks will always be a potential vector of infection and since many, if not most, apps on Google Play (and iOS) that are free will have ads from a major ad network, it means that any application can potentially give you malware with no fault of the application developers themselves.

--
Taxation is legalized theft, no more, no less.
Do they all hire the same marketing people? by Anonymous Coward · 2013-06-10 12:11 · Score: 1

Often when there is a major security issue in a software product, there is a marketing that follows in the next few weeks saying it wasn't really as big a deal as the researchers originally claimed. Normally they state how the issues raised don't really apply in the real world. Often the phrase 'Threw cold water' is used. This is done as a distraction and PR exercise to deflect from the fact that the company does not wish to invest the time and effort into fixing the issue.
The IT press normally picks up the phrase 'Threw cold water' from the press release and report that in the headline.
Some examples:
http://www.allbusiness.com/technology/16740572-1.html
http://www.zdnet.com/blog/security/microsoft-pours-cold-water-on-wmp-flaw-warning/2336
BadNews a ruse to sell more AV product? by dgharmon · 2013-06-10 14:35 · Score: 1

`Speaking at an event in Washington D.C. sponsored by the Federal Trade Commission, Google employee and Android team member Adrian Ludwig threw cold water on reports linking BadNews to sites that installed malicious programs. The search giant, he said, had not found any evidence linking BadNews to so-called SMS 'toll fraud' malware."'

So it was just a ruse by the AV companies to sell more AV product ...

--
AccountKiller
1. Re:BadNews a ruse to sell more AV product? by lxs · 2013-06-10 20:49 · Score: 1
  
  Yup. Also Google isn't sharing your email with NSA spies and their datacenters are patrolled by fairies on unicorns in search of rogue rainbows.
BadNews everyone! by Culture20 · 2013-06-10 15:04 · Score: 1

Malware wasn't really bad after all. Oh, my, yes. Plus I'm still in my pajamas.
You know... they're right. by UltraZelda64 · 2013-06-10 15:26 · Score: 1

I actually agree with them on this one. This malware wasn't as bad as the recent disclosure of Google's involvement in a top-secret U.S. Government mass surveillance program that has been going on for several years now.
Or what this may also mean by Anonymous Coward · 2013-06-10 23:26 · Score: 0

It's government made, so it's not harmful.