Just over a week ago Symantec recommended that, in the interest of cyber-safety, apps should only be downloaded directly from the Android Market. Sound advice, one would think, though just a few days later it emerged that more than 50 apps on the Market were infected with DroidDream.
The infection was used to send sensitive information, such as an infected device’s IMEI, to a remote server. Android rolled out an over-the-air update to remove the threat from infected handsets, but – here’s where it gets even worse – malware douchebags have developed a Trojan version of the fix.
The new threat, identified as Bgserv-A, was released through third party sites. Yup, as if downloading apps such as Screaming Sexy Japanese Girls wasn’t stupid enough, some Android users figured it’d be entirely safe to download the clean-up tool from, well, wherever.
Bgserv-A is reported to send the IMEI and phone number of infected handsets to a remote server. It’s also said to have the ability to send text messages.
Cheeky chaps in China are thought to be bearing the brunt of Bgserv-A at the moment.