HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
Heh, all this talk of global infection rates sounds more like a zombie movie than a mobile malware warning. 
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Malicious Android Apps Double in Six Months
- Thread starter HardOCP News
- Start date
Vermillion
Supreme [H]ardness
- Joined
- Apr 5, 2007
- Messages
- 4,416
So a mobile security software vendor is saying the sky is falling, yet they admit that a vast majority of the malware is on 3rd party websites that aren't trustworthy...
I wonder how many sheep will go install Lookout and buy some of their services now because they don't know any better.
I wonder how many sheep will go install Lookout and buy some of their services now because they don't know any better.
dr.stevil
[H]F Junkie
- Joined
- Sep 26, 2008
- Messages
- 9,266
I lol'd
InorganicMatter
[H]F Junkie
- Joined
- Oct 19, 2004
- Messages
- 15,461
This is what happens when you browse dirty websites with a Flash-enabled browser on a rooted operating system.
defuseme2k
[H]ard|Gawd
- Joined
- Oct 7, 2004
- Messages
- 1,074
It is a crock of shit spread by the AV companies. If you go into the market place and allow unknown sources, then you could have this happen. If you WANT to do that and you are a moron, then having AV is probably not a bad idea.
If you get apps from third party sites, then you'd better know what you're doing. I think the fact they let you install whatever you want, from where you want is a GREAT thing, not a bad thing. You do have to turn that function on however, otherwise it pulls from the market place only. Apple has far too much control, so I'm a convert from the iPhone to my Galaxy S II but I don't really shit talk Apple. Their control is great for tards who need to stay in their box; why is that a bad thing? I really don't understand the crux of any of this conversation, nobody would tolerate the level of control they exert over their mobile platform on their desktop. Yet people defend it as if the freedom on Android is a bad thing; its lunacy.
In my mind, it is nearly the same as the AV companies saying you need their protection for the apple platform too, because if you jailbreak and allow third party apps on your iPhone you could get a virus or malware. Yet, nobody would agree with that (not even Android fans), because the assumption is that if you get a virus or rooted with iOS that it's your own dumbass fault. This looks like the same story to me except you don't have to have to jailbreak to enable this function on Android. That is a WEAK link for fanboys to hop on and at the same time, completely miss the point of the freedom in the first place.
If you get apps from third party sites, then you'd better know what you're doing. I think the fact they let you install whatever you want, from where you want is a GREAT thing, not a bad thing. You do have to turn that function on however, otherwise it pulls from the market place only. Apple has far too much control, so I'm a convert from the iPhone to my Galaxy S II but I don't really shit talk Apple. Their control is great for tards who need to stay in their box; why is that a bad thing? I really don't understand the crux of any of this conversation, nobody would tolerate the level of control they exert over their mobile platform on their desktop. Yet people defend it as if the freedom on Android is a bad thing; its lunacy.
In my mind, it is nearly the same as the AV companies saying you need their protection for the apple platform too, because if you jailbreak and allow third party apps on your iPhone you could get a virus or malware. Yet, nobody would agree with that (not even Android fans), because the assumption is that if you get a virus or rooted with iOS that it's your own dumbass fault. This looks like the same story to me except you don't have to have to jailbreak to enable this function on Android. That is a WEAK link for fanboys to hop on and at the same time, completely miss the point of the freedom in the first place.
you don't even have to allow unknown sources. just visit android's marketplace and you and dl some malware right there.
that's the cost of an open system. more freedom requires a more responsible user.
i won't be giving up any of my android phones and tablets any time soon.
that's the cost of an open system. more freedom requires a more responsible user.
i won't be giving up any of my android phones and tablets any time soon.
Vermillion
Supreme [H]ardness
- Joined
- Apr 5, 2007
- Messages
- 4,416
Yeah, the Flash enabled browser and root access is what forces people to click INSTALL after visiting free-android-apps.xxx.
IceDigger
[H]F Junkie
- Joined
- Feb 22, 2001
- Messages
- 12,089
You underestimate how dumb people are.
InorganicMatter
[H]F Junkie
- Joined
- Oct 19, 2004
- Messages
- 15,461
Yeah, the Flash enabled browser and root access is what forces people to click INSTALL after visiting free-android-apps.xxx.
You don't seem to understand how an exploit works, especially with browser plugins.
All someone has to do is exploit a hole in Flash and they can install whatever they want WITHOUT you pressing anything. Just by visiting the page.
InorganicMatter
[H]F Junkie
- Joined
- Oct 19, 2004
- Messages
- 15,461
Well yeah, but Android white knights are even more sensitive than most when it comes to security. How dare you infer that the almighty Linux could possibly have an exploit in the wild!
Vermillion
Supreme [H]ardness
- Joined
- Apr 5, 2007
- Messages
- 4,416
You don't seem to understand how the sandboxing of applications in Android works. Show me where Android (rooted or not rooted) has been compromised via an active Flash exploit or a browser exploit and has allowed malicious software to install without the user knowing. Oh wait...that hasn't happened yet.
Even recent Flash exploits, like the ones in Flash 10.2.x, were only theoretically able to run remote code against Android. There was never a proof of concept for any Flash exploit on Android even when that same flaw in Windows had active exploits in the wild.
Last I checked all malware for Android needs to be installed by the USER. So I have no sympathy for the people installing crap like Super_Sexy_Japanese_Girls.apk from some random website.
Exploit in the wild? No. There are none that anybody has seen. There is malware in the form of bad applications that the user has to install.
heatlesssun
Extremely [H]
- Joined
- Nov 5, 2005
- Messages
- 44,154
For the foreseeable future because of the much smaller market share of Windows Phone, WP users won't have to worry much about this stuff. Security by obscurity isn't a bad thing, just has nothing to do with software engineering.