The fiaso in the last few weeks about the malicious apps (now dubbed Droid Dream) that were downloaded from the Android Market has gotten even worse. It was announced a few days ago that Google had removed the apps from users handsets, and was working on a fix for the malicious code, but unfortunately, some users got impatient and installed an app which was posing as Google's official app to fix the security flaw that actually contained more malware hidden inside.
The app is called Android Market Security Tool and bears the same name as the app which Google is automatically pushing to affected users' handsets through the Android Market. However, some developer made another malware app posing as the fix from Google and took advantage of people's fears about the malware to exploit the chance to get more malware onto users handsets.
The latest malware app in question contains a trojan called Bgserv.A and was apparently uploaded to a Chinese third-party app market and it not known to have made its way into the official app market. The app does is read information about the user's phone number and IMEI.
Users that installed any of the apps which contained the original malware should have already received an email from Google about it.
If you got one of those messages from Google and do need the app, the real Android Market Security Tool will automatically be downloaded and installed on your phone through the Android Market which will remove any code the malware inserted on the phone, as well as close the security gap.
Be careful with what you are downloading onto your phones guys!
Image from AndroidGuys