It seems that the malware battle is just starting with no sight of it ending anytime soon, where Google is working hard to remove more malware-infected applications from its Android Market. Google removed another 10 apps from the market on June 5th not too long after Xuxian Jiang, an assistant professor in Computer Science at North Carolina State University, sent a report of his findings to the Internet search giant.
In his report, Jiang published an analysis of the malicious code that he called “Plankton”. Andrew Brandt, lead threat research analyst over at Webroot, spent some time to dig into Plankton. He has said this about the malware; “It has the ability to remotely access a command-and-control [C&C] server for instructions, and upload additional payloads. It uses a very stealthy method to push any malware it wants to phone.”
As for YZHCSMS, which can be found in Android apps on the Google Android Market and on Chinese download sites, such infected apps were already running around on Android Market for at least a quarter before Google did something about it. Better late than never, and always purchase apps that are legitimate to stay on the safe side.
Edited by Willy