Tuesday , May 30 2023

The rise of Android malware, Google countermeasures are little useful


2018 to date has been a the dose for horribilis for Android. This is evidenced by researchers from G Data, one of the most important security companies in the world, according to which every day there are about 12,000 new applications that damage smartphones and tablets with a Google-powered operating system.

The report does not indicate whether the threat was discovered on Google Play and elsewhere, but with regard to the scope, it is likely that they are installation files outside the official store. Among the recorded threats, G data experts emphasize apps for confidential data, such as Whatsapp chat or other messaging systems. They also note that the circulation has more complex threats: "Google's analyst, Maddie Stone, has reported highly engineered malware that uses resources from ordinary ones to not recognize them in automated systems." The last thing that theoretically makes the infection possible in the Play Store.

The G-DATA experts, which concluded at the end of September 2018, explain that they have been identified 3.2 million new malware samples for Android, that is, "an increase of more than 40% compared to 2017". The number of malware found during the first nine months of the year is almost identical to what was found throughout 2016. In order to deteriorate the situation, as is always the case, there is a lack of updates to many of the smartphone models in circulation.

"Given these figures, this is inevitable Ask yourself if Android is unsafe"Reading the company's press release The question the authors seek to provide a structured and more complicated answer than simply yes or no. Initially, Android is widely used, which makes it the target of the favorite criminals and makes sense of the large number of existing malware – also because of , that often and gladly you "shoot in a pile" in the hope of catching at least some fish.

Image: depositphotos

However, this diffusion hides one great varietyamong those who have a newly developed product, maybe the highest level with the latest installed updates, and those who use the product that has been in the years that was once again an economic model. In such cases, updates are a utopian dream.

In 2017, Google began to seriously perceive this issue, making it easier to deploy security patches; about " a useful measure, but the scope is limited, considering that more than a year after its release, Android 8 is currently installed on smartphone in five countries and with a 0.1% distribution rate, the current release version 9 is virtually unavailable, "continues the text.

And if Google's action is inadequate, things will not improve if you look at them from the point of view of producers, who "should pay more attention to the topic by implementing good quality processes."

To promote the same, Google has made some commitments, such as security updates are guaranteed for at least two years; the restriction, however, applies only to those models from which at least 100,000 units are sold after 31 January 2018. The effective application of the new rules was postponed until 31 January of the following year.

However, the problem affects not only Android and individual smartphone updates, but also also the basic Linux kernel. So much so that Linux-Foundation Greg Kroah-Hartman confirms that, with the exception of Google's next-generation Pixel, there are no Android devices with the current kernel version. " Therefore, all other smartphones are more exposed because "all changes made to the kernel are visible in the open source software, so the attackers they just have to read what vulnerabilities are to which kernel developers have been eliminated. "

One of the quietest ways is to take a recent range, such as One Plus 6T.

Source link