Dipl.-Inform. Carsten Eilers

Die größte Gefahr, sich Schadsoftware einzufangen, sind alternative App-Marktplätze und Apps, die zum Beispiel über Websites vertrieben werden. Aber auch Google Play ist nicht wirklich sicher. Nachdem es etliche bösartige Programme in Google Play geschafft haben, hat Google im Februar 2012 eine automatische Prüfung aller Apps eingeführt. Aber die ist nicht besonders zuverlässig, es gelangen immer wieder echte Schadsoftware oder PUA in Google Play. Darum: Seien Sie vorsichtig bei dem, was Sie installieren.

Drive-by-Infektionen sind noch keine echte Gefahr, da die App-Pakete nur unbemerkt herunter geladen, aber nicht installiert werden. Solange Sie keine Pakete installieren, die plötzlich auf Ihrem Android-Gerät auftauchen, sind Sie in Sicherheit.

Und hier noch die Links und Literaturverweise aus dem Artikel:

• [1] Carsten Eilers: "Sicher, sicherer, iOS?", Mobile Technology 4.2012
• [2] Kevin Mahaffey, Lookout Blog: "Security Alert: DroidDream Malware Found in Official Android Market", 1.3.2011
• [3] Vanja Svajcer, Sophos Naked Security: "Aftermath of the Droid Dream Android Market malware attack", 3.3.2011
• [4] Rich Cannings, Google Mobile Blog: "An Update on Android Market Security", 5.3.2011
• [5] Rich Cannings, Tim Bray; Android Developers Blog: "Exercising Our Remote Application Removal Feature", 23.6.2010
• [6] Graham Cluley, Sophos Naked Security: "Android malware clean-up exposes reliance on mobile carriers to push out updates", 7.3.2011
• [7] Jon Oberheide, Duo Security Blog: "Early Results from X-Ray: Over 50% of Android Devices are Vulnerable", 12.9.2013
• [8] Paul Roberts, Sophos Naked Security: "More than half of Androids have unpatched security holes, research claims", 17.9.2012
• [9] Graham Cluley, Sophos Naked Security: "Apple: Androids are much less likely to be running an up-to-date OS than iPhones and iPads", 11.6.2012
• [10] Graham Cluley, Sophos Naked Security: "Fake Instagram app infects Android devices with malware", 18.4.2012
• [11] Graham Cluley, Sophos Naked Security: "The Legend of Zelda and dirty tricks by Android apps in the Google Play store", 26.4.2012
• [12] Graham Cluley, Sophos Naked Security: "Fake Apple apps appear on Android Google Play store", 19.11.2012
• [13] Graham Cluley, Sophos Naked Security: "Fake Plants vs Zombies and other Android games infiltrate Google Play store, make money for fraudsters", 21.1.2013
• [14] Sean Sullivan, F-Secure Blog: "Bad Bad Piggies On Google Play", 12.6.2013
• [15] Vanja Svajcer, Sophos Naked Security: "Fake Android Market Security tool delivers more than just a cure for Droid Dream malware", 10.3.2011
• [16] Carsten Eilers: "Angst einflößende Schadsoftware: Scareware", 4.11.2010
• [17] Jovi Umawing, ThreatTrack Security Labs: "New Twitter Spam Run Leads to Android Rogue AV", 14.5.2012
• [18] Graham Cluley, Sophos Naked Security: "Fake anti-virus disguises used by Android malware", 16.5.2012
• [19] Karmina, F-Secure Blog: "Perfecting the Fake - Android Edition", 4.9.2012
• [20] SecResponse, F-Secure Blog: "Not the Mobile Antivirus You Were Looking For", 6.6.2013
• [21] Paul Ducklin, Sophos Naked Security: "Android malware in pictures - a blow-by-blow account of mobile scareware", 31.5.2013
• [22] Graham Cluley, Sophos Naked Security: "New Android Trojan horse could prove costly", 16.2.2011
• [23] Vanja Svajcer, Sophos Naked Security: "Malicious cloned games attack Google Android Market", 12.12.2011
• [24] ThreatSolutions (Irene), F-Secure Blog: "Trojan:Android/OpFake.D Still Encodes Its Config File", 31.1.2012
• [25] Graham Cluley , Sophos Naked Security: "Android malware poses as Angry Birds Space game", 12.4.2012
• [26] Sean Sullivan, F-Secure Blog: "Trojan:Android/Pincer.A", 5.4.2013
• [27] Carsten Eilers: "Zeus - Trojaner, Botnet, Schädlingsbaukasten, ...", 17.3.2011
• [28] Carsten Eilers: "Zeus wird mobil - jetzt auch auf Android", 14.7.2011
• [29] Vanja Svajcer, Sophos Naked Security: "SpyEye targeting Android users - just a copy of Zeus's strategy?", 16.9.2011
• [30] Polizei Berlin: "Präventionshinweis für Onlinebanking im mTAN-Verfahren", 13.11.2012
• [31] Graham Cluley, Sophos Naked Security: "Banking malware found on Android Marketplace", 11.1.2010
• [32] Carsten Eilers: "Drive-by-Infektionen - Gefahren drohen überall", 8.7.2010
• [33] Vanja Svajcer, Sophos Naked Security: "Android malware spreads via Facebook [VIDEO]", 24.2.2012
• [34] Chester Wisniewski, Sophos Naked Security: "Notcom malware for Android distributed using drive-by downloads", 3.5.2012
• [35] Sean Sullivan, F-Secure Blog: "Video: Angry Birds Space Trojan & Drive-by Android", 18.5.2012
• [36] Jaikumar Vijayan, Computerworld: "Remote access tools a growing threat to smartphones", 1.3.2012
• [37] George Kurtz, Dmitri Alperovitch; RSA Conference 2012: "Hacking Exposed: Mobile RAT Edition", Februar 2012: Video und Präsentation als PDF
• [38] Graham Cluley, Sophos Naked Security: "8000 iPhone and Android users duped into joining smartphone botnet", 9.3.2010
• [39] Chester Wisniewski Sophos Naked Security: "Android botnet wants to sell you Viagra, penny stocks and e-cards", 5.7.2012
• [40] Chester Wisniewski, Sophos Naked Security: "Android spam bots? What we know for sure", 6.7.2012
• [41] Vanja Svajcer, Sophos Naked Security: "What is worse on Android? Malware or PUAs?", 13.9.2012
• [42] Sean Sullivan, F-Secure Blog: "Google Play: Potentially Unwanted", 11.3.2013
• [43] Vanja Svajcer, Sophos Naked Security: "A chink in Android Armour", 10.1.2013
• [44] Hiroshi Lockheimer, Google Mobile Blog: "Android and Security", 2.2.2012

Carsten Eilers