Late last Nox Google finally release an official response to the lots of malicious Android applications that had infiltrated theAndroid Market . update .
Within the reply , the company confirmed that there were 58 malicious app full , and that they were indeed downloaded by approximately 260,000 devices before Google was able-bodied to remove them from the store . While that may seem like a lofty , dangerously mellow number of septic devices , Google also go on to claim that only a user ’s IMEI number was ever beam away to party unknown .
Google went on to say the company is spark off a “ putting to death switch ” characteristic that will concede them the ability to remotely microwave malicious program program without any input from the user . Furthermore , the Android Market will be receiving a succeeding protection update that will address this exposure .
We spoke with a Google rep today to clarify the vulnerability and update process for this security event . First , the back entrance vulnerability exploited by these malicious apps has been closed by Google , and user will not have to reply on their gadget ’s manufacturer or the carrier wave to receive the update . For further elaborate information on the shut backdoor and future security update for the Android Market , head over to the Google Mobile blog , where a rather detailed explainer of what ’s last on and what ’s being donewent up at 10 p.m. last night . This segment updated at 3:00 EST with elucidation from Google.- j.l .
finally , the varsity letter Google is institutionalise affected users , asobtained by Techcrunch :
You are receiving this message to inform you of a critical offspring impact your Android Market score .
Hello ,
We late identify applications on Android Market that were designed to harm devices . These malicious diligence ( “ malware ” ) have been take from Android Market , and the corresponding developer accounts have been close .
According to our record , you have downloaded one or more of these program program . This malware was design to allow an unauthorised third - party to get at your gadget without your knowledge . As far as we can see , the only entropy obtain was gimmick - specific ( IMEI / IMSI , unique computer code which are used to name fluid devices , and the translation of Android lam on your gimmick ) .
However , this malware could leave your twist and personal information at risk , so we are labor an Android Market security update to your machine to take away this malware . Over the next few hours , you will meet a telling on your gadget that says “ Android Market Security Tool March 2011 ” has been installed . You are not take to take any action mechanism from there , the update will automatically fly the coop . You may also receive notification(s ) on your gadget that an app has been removed . Within 24 hours of receive the update , you will receive a 2d email confirming its achiever .
To ensure this update is run cursorily , please ensure that your equipment is turned on and has a strong connection connection .
For more details , please jaw the Android Market Help Center .
Regards ,
The Android Market Team
This is all very unsettling , to say the least .
Update : We ’ve been contacted by a Google spokesperson to clear up the incision above on the security measure update . [ Techcrunch ]
AndroidGoogleGoogle PlayMobiles
Daily Newsletter
Get the best tech , scientific discipline , and culture news program in your inbox day by day .
word from the time to come , give birth to your nowadays .
You May Also Like
