Google Pulls Malware From The Android Market

Google pulled a few more malware infected applications from the Android Market last week, a security analyst claims.

The revelation came from Xuxian Jiang, an assistant professor in computer science and technology at North Carolina State University. According to him, a total of 10 applications were removed by Google from its Android Market on June 5.

Jiang, who was also responsible for discovering these malware-infected applications being sold through the Android Market, worked to draw Google's attention to the danger facing its customers.

Jiang also generated a report carrying an in-depth analysis of the malicious code, dubbed Plankton.

Another security specialist Andrew Bradit, who is a research analyst at Webroot, did his own research on Plankton.

Brandt raised the alarm by saying, "It has the ability to remotely access a command-and-control [C&C] server for instructions, and upload additional payloads. It uses a very stealthy method to push any malware it wants to phone," iGyaan reports.

Jiang's team also reported the presence of several other malicious apps in the Android Market, the most threatening examples being DroidKungFu, and "YZHCSMS," a Trojan horse.

Google has allowed developers almost complete freedom to develop apps, as opposed to the closed approach taken by Apple. While this has earned it the praise of many developers and customers, it also raises the possibility of malicious code getting into even the official Android Market.