+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 

Google Let A Malicious App That Could Steal Information Off Your Android Phone Into Its App Store

Apr 17, 2014, 00:48 IST

Mike Nudelman/Business Insider

Security firm FireEye discovered a malicious strain of malware that infected Android devices according to a company blog post.

Advertisement

The report neglected to provide the name of the app, but it was able to alter the icons of other applications on the phone or tablet's home screen.

If a user wanted to launch another program, they would be taken to a phishing site that could steal personal information off the device instead of the actual application.

Computerworld mentions one example of how bad this was bug could be:

"The danger is that attackers could modify the icon of a banking application and fool users into divulging sensitive information on a fake website they've created."

Advertisement

FireEye tested this attack by creating a clone program and submitting it to the Google Play Store for Android apps. The company had no problem publishing the app and users never recieved a warning during the download process. FireEye quickly removed the app.

FireEye wrote that it contacted Google about this issue in October 2013 but a fix wasn't issued for it until February 2014.

Android users are safe from this issue for now, but FireEye's report concludes that security vendors need to move more quickly to fix these problems.

You are subscribed to notifications!
Looks like you've blocked notifications!
Next Article