Google Scrambles to Recover from DroidDream Android Attack

It was recently discovered that more than 50 Google Android market apps were malware-laden. Dubbed DroidDream, the infected apps have been removed by Google. In a recent article by Network World Senior Editor Ellen Messmer, Google said that it’s “adding a number of measures to help prevent malicious applications using similar exploits from being distributed through Android Market.” But the search engine giant hasn’t yet detailed what those measures may be.

This episode has security insiders asking just how the Android devices were vulnerable to the DroidDream attack in the first place since Google supposedly issued patches for this issue last November. It appears the answer is simple: “Android-device manufacturers and carriers that work in tandem to distribute Android-based updates had not uniformly issued patches to their customers for the DroidDream exploit.”

Google did acknowledge that not all Android devices have been patched, and to help with the current issues, it sent out an auto-uninstall tool — called “Android Market Security Tool March 2011” — to infected Android devices. The tool will uninstall the malicious Android apps that were downloaded from the Google Market, the Network World article reported.

According to Neil Book, vice president of Juniper’s mobile division, less than five percent of the world’s smartphones have any type of anti-malware client on them. He expects to start seeing smartphone-oriented anti-malware solutions offered on an OEM basis with the service providers installing it “for free.”

For more information about the DroidDream exploit and future solutions, read the full article: http://www.networkworld.com/news/2011/030911-google-droiddream-android.html?page=1