Google Android Security

Google Mandates App Updates Come From Google Play

The Google Play store has been an Eden for hackers wanting to get malicious code onto Android devices. A number of things made the marketplace too tempting for attackers to resist, including the open source nature of the operating system, lax vetting of developers, and the ability to modify code in runtime by pushing app updates from outside the store.

Low Detection Rates Mar Google Android Application Verification Service

Google’s brand new application verification service for Android, released in JellyBean 4.2, fails to measure up to its commercial counterparts, according to researchers from North Carolina State University.The new service determines whether applications installed on Android devices are malicious, yet in comparisons with 10 leading antivirus engines, and even Google’s newly acquired VirusTotal scanner, the new service detects at best 20 percent of Android malware.

A phisher hoping to harvest bank login details managed to smuggle his app onto the Android app store. Malicious apps posted by Droid09 were quickly identified, prompting a warning to legitimate users and a ban for the VXer. Read the full article. [The Register]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.