Android's risky business

Jun 20, 2011 5:22 AM
Filed under Security
Page 1 of 6 | Single page

Google's open-door policy on app development for its mobile operating system propels it forward but at a cost.

walk through the Android Software Development Kit and libraries will show you some interesting scenery. You can, for example, see how a few strokes of code will allow you to write an application that can access an Android device’s contact list and phone, in the background.

And it might show you how to write an app that will launch the device’s email service and even send emails.

The Android SDK hiking tour will also provide a distance marker with instructions on how to put together an app that will launch a device’s text-messaging feature to both receive and send data.

If you’re an upstanding citizen and software developer, you can use that information to create powerful, secure, productive and “gee whiz” apps of the kind that have made Android one of the fastest-growing operating systems of all time. If you’re a hacker or a criminal, however, you can use Android to launch vicious, destructive attacks on individuals and, potentially, infrastructure.

Last month more than 50 Android apps were found to contain malware called DroidDream, ranging from gaming apps to a currency converter app to a scientific calculator app, according to security software maker Lookout.

Lookout reported that the Trojan known as DroidDream used two exploits called “exploid” and “rageagainstthecage” to infect Android-based devices.

Lookout said it found that hackers had used exploid to deploy itself looking like a legitimate “calling plan management” app and began hitting the market via what it said were Chinese app markets.

Eventually, Lookout said, a version of that app turned up in the official (and more mainstream) Android Market. A further review found this app turned out to be, essentially, a dud because it didn’t have the code to fully exploit a device.

 
Follow us on Facebook and Twitter
 

Copyright © CRN Australia. All rights reserved.

Android's risky business
 
 
 
 
 
Top Stories
Datacom signs mega data centre deal with NextDC
Perth is first cab off the rank.
 
NewLease hires former MYOB and Oracle man as new CEO
Following death of co-founder Douglas Tutus.
 
Aussie firm aims to build 10,000-strong software army
Revolution IT banks on crowdsourcing to help win business.
 
Sign up to receive CRN email bulletins
   FOLLOW US...
Polls
Which mobile device couldn't you live without?


Latest Comments
CRN Magazine

Issue: 329 | July 2014

CRN Magazine looks in-depth at the emerging issues and developments for the channel, and provides insight, analysis and strategic information to help resellers better run their businesses.