In a step to aid the users who were affected by DroidDream malware distributed with Malicious apps, "Android Market Security Tool March 2011" will prevent attackers from accessing any further information by reversing the root access enabled by the rogue apps. Those apps were published by three bad people, “Myournet” “Kingmall2010″ and “we20090202″ and the list of apps available at the above link.
The tool does not patch the exploits the malware apps used but does remove the traces of malicious code left behind when the apps were uninstalled by users or by Android Kill Switch..
Previously, Google remotely deleted the malware infested apps from users phones. Starting last Wednesday Google removed more than 50 infected Android apps from the market place. These rogue applications took advantage of known vulnerabilities which are not present in Android versions 2.2.2 or higher.
If you ever downloaded any of these apps, you would better and safe with this tool;
You can learn more at the Android Market Help Center. Be safe and enjoy your Droid Phones.
- We removed the malicious applications from Android Market, suspended the associated developer accounts, and contacted law enforcement about the attack.
- We are remotely removing the malicious applications from affected devices. This remote application removal feature is one of many security controls the Android team can use to help protect users from malicious applications.
- We are pushing an Android Market security update to all affected devices that undoes the exploits to prevent the attacker(s) from accessing any more information from affected devices. If your device has been affected, you will receive an email from firstname.lastname@example.org over the next 72 hours. You will also receive a notification on your device that “Android Market Security Tool March 2011” has been installed. You may also receive notification(s) on your device that an application has been removed. You are not required to take any action from there; the update will automatically undo the exploit. Within 24 hours of the exploit being undone, you will receive a second email.
- We are adding a number of measures to help prevent additional malicious applications using similar exploits from being distributed through Android Market and are working with our partners to provide the fix for the underlying security issues.
An Update on Android Market Security - Official Google Mobile Blog