New Malware from the Folks That Brought You DroidDream

May 31, 2011
1

It's been a few months since we first reported on the outbreak of "Droid Dream," a piece of malware which was found present on the Android Market. Now it appears that a new, stripped down DroidDream is appearing in the market, and has affected tens of apps from no less than 6 developers. Google has removed the apps from the market, but we aren't sure if they've used their kill switch to nuke the apps from any phones that have downloaded them at this time.

The malware, hijacks your phone in the background, triggered by certain actions such as receiving a call. This means that the app itself does not even need to be launched. The malicious app will then send several details about your phone to the creators of the malware.

The list of known infect apps is as follows:

By Magic Photo Studio:
Sexy Girls: Hot Japanese
Sexy Legs
HOT Girls 4
Beauty Breasts
Sex Sound
Sex Sound: Japanese
HOT Girls 1
HOT Girls 2
HOT Girls 3

By Mango Studio:
Floating Image Free
System Monitor
Super StopWatch and Timer
System Info Manager

By E.T. Tean:
Call End Vibrate

By BeeGoo:
Quick Photo Grid
Delete Contacts
Quick Uninstaller
Contact Master
Brightness Settings
Volume Manager
Super Photo Enhance
Super Color Flashlight
Paint Master

By DroidPlus:
Quick Cleaner
Super App Manager
Quick SMS Backup

By GluMobi:
Tetris
Bubble Buster Free
Quick History Eraser
Super Compass and Leveler
Go FallDown !
Solitaire Free
Scientific Calculator
TenDrip

Remember to always be careful when downloading apps, checking reviews and user ratings, and only downloading from trusted sources, keeping in mind that just because it's on the Android Market does not guarantee it is safe. In short, use common sense. While the extent of infected apps ability to cause mischief once the data has been sent is not detailed, uninstalling it is your obvious first step should you be infected. The report comes from Lookout, a mobile security company. They say they are able to assist infected users, should you email them at support@mylookout.com

[via The Lookout Blog]


Recent Stories

  • http://www.facebook.com/gord.birch Gord Birch

    For you Droid’ers out there, there is a list of applications infected.