The day we have been waiting for is finally here. Someone published malware in an appstore, and to no surprise it was published to the Android Marketplace. Norwegian newspaper Digi.no has written/translated an article form The Register about an phishing application written to hijack your banking account information.
This was bound to happen, and this is whythere is such a strict regime to submit applications into appstores like the Apple AppStore and the Windows Phone Marketplace.
Today’s smartphones are trusted devices and the general public does not yet think of their mobile phone as a device that needs antivirus, firewall and malware detection software. But as long as there are vendor solutions like the Android Marketplace; where there is no quality control and no reviewing of applications except for the user feedback from those who already have been fooled by such applications i think things will get a lot worse before it gets better.
The developer that posted the malicious application used the handle 09Droid and if you have installed any of the following applications (or any other by this developer) you should probably uninstall :)
Abbey Bank
Alaska USA FCU
Alliance & Leicester (v. 1.1)
Bank Atlantic
Bank of America
Bank of Queensland
Barclaycard (v. 1.1)
Barclays Bank (v. 1.2)
BB&T
Chase
City Bank Texas
Commerce Bank
Compass Bank
Deutsche Bank
Fifty Third Bank v.1.1
First Republic Bank v.1.1
Great Florida Bank
Grupo Banco Popular
HSBC US (v. 1.2)
ING DiBa v.1.1
Key Bank
LloydsTSB
M&I
Mechanics Bank v.1.1
MFFCU v.1.1
Midwest
Nationwide (v. 1.1)
NatWest (v. 1.1)
Navy Federal Credit Union (v. 1.1)
PNC
Royal Bank of Canada
RBS v.1.1
SunTrust
TD Bank v.1.1
US Bank v.1.2
USAA v.1.1
Valley Credit Union
Wachovia Corp (v. 1.2)
Wells Fargo (v. 1.1)
All applications have been removed from the Android Marketplace
