According to ZDNet, the oddly named but capable malware Android.counterclank can be found in at least 13 free games on Google's official marketplace.
Counterclank is reportedly able to communicate with central command and control servers, steal personal data off the phone and also displaying ads on the user's phone.
Now, most of these titles have very odd Engrishy-like titles which a person like me probably would not be likely to download; for example, "Heart Live Wallpaper" doesn't sound like my kind of game, but there's a LOT of people out there these days with Android phones, kids (and adults, for that matter) who don't know much English anyway - or don't care - they're just downloading random free stuff in hopes of finding something fun enough to play. Only they're getting bonus material also.
It doesn't say in the article if deleting the game also deletes the malware off the phone, but it also doesn't say that Google has removed the offending titles from its marketplace and purged them off users' phones (as they're capable of on at least unrooted units), so I guess they haven't done either - yet, anyway.
This is exactly the reason I don't own an Android phone, and probably never will. You'll simply never will be safe - at all - with the kind of security model Google's using. Not that Apple's or MS's are completely infallible of course, nothing ever is, but Google's is from what I can tell pretty much non-existant (at least until after shit has already hit the fan anyway) so most ANYTHING other than theirs is better. And if you use a 3rd-party marketplace, then Grud help you because nobody else will...
Counterclank is reportedly able to communicate with central command and control servers, steal personal data off the phone and also displaying ads on the user's phone.
Now, most of these titles have very odd Engrishy-like titles which a person like me probably would not be likely to download; for example, "Heart Live Wallpaper" doesn't sound like my kind of game, but there's a LOT of people out there these days with Android phones, kids (and adults, for that matter) who don't know much English anyway - or don't care - they're just downloading random free stuff in hopes of finding something fun enough to play. Only they're getting bonus material also.
It doesn't say in the article if deleting the game also deletes the malware off the phone, but it also doesn't say that Google has removed the offending titles from its marketplace and purged them off users' phones (as they're capable of on at least unrooted units), so I guess they haven't done either - yet, anyway.
This is exactly the reason I don't own an Android phone, and probably never will. You'll simply never will be safe - at all - with the kind of security model Google's using. Not that Apple's or MS's are completely infallible of course, nothing ever is, but Google's is from what I can tell pretty much non-existant (at least until after shit has already hit the fan anyway) so most ANYTHING other than theirs is better. And if you use a 3rd-party marketplace, then Grud help you because nobody else will...