G+_Ian Morgan Posted February 4, 2015 Share Posted February 4, 2015 4 February 2015 Last updated at 12:52 Android adware 'infects millions' of phones and tablets Android users are being warned that several popular apps that were on the official Google Play store appear to have contained hidden code that made malicious ads pop up. Security firm Avast said that one of the apps involved - a free version of the card game Durak - had been downloaded up to 10 million times, according to Google Play's own counter. Google has now blocked access. Avast said that it first became aware of the issue after a member of the public contacted it after carrying out his own investigation into how his Nexus 5 smartphone had come to be infected with malicious code. The original apps were said to have held off showing the pop-ups until seven or more days after being installed, which the analyst suggested was intended to mask the fact that they were responsible. "Most people won't be able to find the source of the problem and will face fake ads each time they unlock their device," A search by the BBC for other apps made by the same developers revealed dozens more apps, including video games, a psychology guide, wedding planning software and cookery tips - all of which have now been blocked. Read the article at :- http://www.bbc.co.uk/news/technology-31129797 http://www.bbc.co.uk/news/technology-31129797 Link to comment Share on other sites More sharing options...
G+_Mark Stronge Posted February 5, 2015 Share Posted February 5, 2015 Yeah, not quite. Typical click bait. Link to comment Share on other sites More sharing options...
G+_Johan Appelgren Posted February 5, 2015 Share Posted February 5, 2015 Infected as in user deliberately chose to install it despite it requesting permissions that should set off warning bells for even the most naive person. Especially the draw over other apps permission stands out. draw over other apps <- should almost never be needed by any app. read sensitive log data <- spyware but ineffectual on newer versions of Android. read your contacts <- should never be needed unless the app integrates with contacts like Skype or a few cases where contact suggestions make sense within the app like e-mail apps. In most cases apps can just use the built-in contact picker that requires no permissions. read phone status and identity <- only needed for legacy apps that needs to stop playback for calls on Android 2.1 and older. Frequently abused by apps that want to track devices across factory resets for advertising purposes though. Link to comment Share on other sites More sharing options...
G+_Mark Stronge Posted February 5, 2015 Share Posted February 5, 2015 You can classify all free apps with adverts as adware, the only difference is the ones removed here had pop-ups that looked like system notifications which is against android app guidelines.? Link to comment Share on other sites More sharing options...
Recommended Posts