Great advice – look at the permissions required!
Android’s open-source accessibility is one of its appeals to developers—but it also appeals to attackers. This week, BBC reports, Google [fortune-stock symbol=”GOOG”] had to pull a malicious Android app from its Google Play store.
The malicious software was disguised as BatteryBot Pro, a real app for tracking the power usage of your phone. The fake version of the app was reportedly able to send text messages on the user’s behalf and also blocked users from deleting it from their phones.
The Indian mobile security company Zscaler wrote about the app spoofing on its official blog, noting that the practice of “embedding malicious modules into” an existing app is common on the Android operating system—more common than the other method of malware development, which is to create a malicious app from scratch.
Google promptly yanked the bad apple app from its store once it became aware of the problem.
View original post 67 more words