Google culls malicious apps from Android Market, RIM launches BlackBerry Protect

There is a growing response to security lapses on mobile. Last week, Google Inc. discovered more than 20 malicious applications that were uploaded to Android Market. For it’s part, Google says the applications were removed “within minutes of becoming aware.”
Rich Cannings, head of security on Android, disclosed what information was at risk and how Google responded in a blog post over the weekend. By taking advantage of vulnerabilities affecting Android devices running any version prior to 2.2.2, attackers were able to grab unique codes that identify mobile devices and the version of Android running on those devices, Cannings wrote. However, “given the nature of the exploits, the attacker(s) could access other data, which is why we’ve taken a number of steps to protect those who downloaded a malicious application,” he added.
Google removed the applications from Android Market, suspended the developer accounts of those associated with the apps and alerted the authorities. The company is also removing the applications from affected devices via the remote application removal feature tool in Android and pushing a security update to those devices to prevent any more data leaks. Affected users will receive an e-mail from the Android Market team, notifying them of the problem and the steps Google is taking in response.
For Google, which has a much more lax app approval process than Apple Inc., this latest snafu illustrates how easily and quickly smart phone data can be at risk. For the time being, Google doesn’t appear to be changing its process, instead it has reinforced its commitment to some level of self regulation.
“We always encourage you to check the list of permissions when installing an application from Android Market. Security is a priority for the Android team, and we’re committed to building new safeguards to help prevent these kinds of attacks from happening in the future,” Cannings wrote.
In other security-related news, BlackBerry-maker Research In Motion Ltd. has released a new application that enables users to backup, restore and locate their device. BlackBerry Protect, which is available in beta in North America and Latin America also features remote device wipre, remote device lock, a “lost and found” screen and remote activation of the device’s loud ringer.