Latest news
Security experts have been wondering for a long time why Google hasn't copied Apple's rather successful app vetting process but, as it turns out, the company has already made a move in the right direction by adding an automated app scanning service to the market.
Codenamed "Bouncer", it scans both newly added and old apps in search for potentially malicious software, and analyzes developer accounts in order to prevent repeat-offending developers from returning with new malicious offerings.
"Here’s how it works: once an application is uploaded, the service immediately starts analyzing it for known malware, spyware and trojans", explains Hiroshi Lockheimer, VP of Engineering of the Android team. "It also looks for behaviors that indicate an application might be misbehaving, and compares it against previously analyzed apps to detect possible red flags."
The applications' behavior is analyzed by running it on Google’s cloud infrastructure and simulating how it will run on an Android device. Once the service flags an app, it will be reviewed manually by Google employees.
Alas, Lockheimer doesn't tell if apps that cannot be considered strictly as malware but don't have the users' best interest at heart will be flagged by the service and banned from the market.
"The service has been looking for malicious apps in Market for a while now, and between the first and second halves of 2011, we saw a 40% decrease in the number of potentially-malicious downloads from Android Market," says Lockheimer, contradicting the findings of many security companies.
According to all this, Google is still not checking out the apps before they are made available for download by developers, but if the service works as planned, malicious apps should be taken down before doing much damage.
Granted, it is not the best solution, but it is a obvious improvement. Still, Android users should remember that carefully reviewing what permissions an app asks before being installed and researching it and its developer before doing so will considerably lessen the probability of installing a malicious app.
Spotlight
Review: Logging and Log Management
Posted on 22 May 2013. | Every security practitioner should be aware of the overwhelming advantages of logging and perusing logs for discovering system intrusions. But logging and log management comes with its own set of difficulties.
Experts highlight top data breach vulnerabilities
Posted on 22 May 2013. | Hidden vulnerabilities lie in everyday activities that can expose personal information and lead to data breach, including buying gas with a credit card or wearing a pacemaker.
A closer look at Mega cloud storage
Posted on 21 May 2013. | Once a novelty, nowadays many cloud storage services are fighting for their piece of the market in the virtual world. Mega offers 50GB of free space with great pricing on Pro accounts.
The CSO perspective on healthcare security and compliance
Posted on 20 May 2013. | Randall Gamby is the CSO of the Medicaid Information Service Center of New York. In this interview he discusses healthcare security and compliance challenges and offers a variety of tips.
Cyber espionage campaign uses professionally-made malware
Posted on 20 May 2013. | A massive cyber espionage campaign has been hitting government ministries, IT companies, academic research institutions, and more.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
