May 25, 2012 - 05:30 PM EDT — AAPL: 562.29 (-3.03, -0.54%) | NASDAQ: 2837.53 (-1.85, -0.07%)

Windows malware found on HTC Android phone; Macintosh and iPhone unaffected

Tuesday, March 9, 2010 · 9:09 pm · 37 Comments

“An employee at Spanish antivirus firm Panda Security received a new Android-based Vodafone HTC Magic with malware on it, according to researchers at Panda Labs,” Elinor Mills reports for CNET.

MacDailyNews Take: Our condolences to the employee. Nobody should receive an HTC Android phone when Apple iPhones exist.

Mills continues, “‘Today one of our colleagues received a brand new Vodafone HTC Magic with Google’s Android OS,’ researcher Pedro Bustamante wrote on the Panda Research Blog on Monday. ‘The interesting thing is that when she plugged the phone to her PC via USB, her Panda Cloud Antivirus went off, detecting both an autorun.inf and autorun.exe as malicious,’ he wrote. ‘A quick look into the phone quickly revealed it was infected and spreading the infection to any and all PCs that the phone would be plugged into.’”

MacDailyNews Take: iPhone and Macintosh unaffected (not that any real Mac user would inflict an HTC Magic upon themselves). This one’s a twofer: The upside-down and backwards poorly-faked Mac gets infected by the upside-down and backwards poorly-faked iPhone. How apropos.

Mills continues, “The malware began ‘phoning home’ for instructions, Bustamante wrote. It’s likely the user’s credentials would have been stolen, he speculated. The malware turned out to be related to the Mariposa botnet, but there was other malware on the device too–Conficker and a Lineage password-stealing Trojan, he said.”

Full article here.

MacDailyNews Take: Ah, the joys of an “open” (sort of) platform. By the way, there are currently tens of millions more iPhone OS devices than there are Android devices in the world today, yet Android is the one that’s infected. The “security via obscurity” argument fails yet again.

[Thanks to MacDailyNews Reader "Mike D." for the heads up.]

Categories: All Sites, News

Thank You for supporting MacDailyNews!

♥ Adobe Photoshop CS6 Extended for Mac - Student and Teacher Edition DVD (65171323) only $249!
♥ Blowout: Apple 15.4" MacBook Pro i7/4Core/2.0GHz/4GB/500GB (MC721LL/A) only $1,549.99 + Free Shipping from MacMall
♥ Mac Madness Save 25% on Parallels Desktop 7!
♥ 15% Off Compatible Ink. 10% Off All Others (excludes OEMs). Free Shipping over $55. Coupon: 123BLOSSOM, Expires 6.18.12
♥ Save up to 60% at the Hammacher Schlemmer Special Values Sale-While supplies last.
♥ Dragon Dictate for Mac 2.5 - New! Simply Smarter Speech Recognition
♥ Up to 30% OFF Accessories from Verizon Wireless
♥ Limited Time Offer: Get free ZAGGsmartbuds when you buy a ZAGGsparq!

Comment Feed

37 Comments

« Previous 1 2

DLMeyer

Wednesday, March 10, 2010 - 12:53 am · Reply

An iPhone could have easily been the carrier. Like the Android, it wouldn’t have been “infected”. But … how was the download executed? My understanding was that the automated handshake resulted in a transfer TO the phone, rather than FROM the phone.
Either way, the phone was not so much “infected” as it was a “carrier”. Like a thumb drive with malware stored on it, the drive loses nothing but a bit of storage space.
The Other Shoe Drops

Wednesday, March 10, 2010 - 2:03 am · Reply

Micro$oftopoly has other worries as well. The Toyota Prius runs embedded Windows and we all know of the runaway Prius. Could it be that Windoze or Windoze malware is the culprit.

Think I’m crazy? Toyota recalled Priuses a couple of years back due to the software being infected with Windows malware. I’m sure some lawyer(s) somewhere are checking this out.
Macduff

Wednesday, March 10, 2010 - 3:04 am · Reply

@ qka
An interesting article mon ami, it just goes to show that even buying reliable brands doesn’t keep you safe sometimes.
MacBeliever

Wednesday, March 10, 2010 - 7:14 am · Reply

@kenh. Google seems to want their thumb in so many pies. Instead of Android, Picasso, Chrome, G-office, G-tv, G-AppStore, etc, I’d rather see Google versions of paperclips, aspirins, jello, taxi-service, etc.
TJ Draper

Wednesday, March 10, 2010 - 7:46 am · Reply

Come on MDN, this is just downright shamefully bad reporting, the HTC device in question wasn’t any more “infected” than the iPods preloaded with malware a little while back. I’m a huge mac person and have had the iPhone since the DAY it came out. But if Apple doesn’t shape up with their controlling nonsense, I’ll be switching to Android. Mac OS X is not locked down the way iPhone OS is, and it doesn’t have problems so your assertion about the joys of the open platform (android) FAIL!
s

Wednesday, March 10, 2010 - 9:07 am · Reply

This is no different from Apple shipping iPods with PC computer virus back in October 18, 2006.

http://www.apple.com/support/windowsvirus/
Monger

Wednesday, March 10, 2010 - 9:10 am · Reply

mal = microsoft at large ?
Jubei

Wednesday, March 10, 2010 - 9:50 am · Reply

@s

Yes, just like then, Macs unaffected. Windows…. SOL.
payshunz

Wednesday, March 10, 2010 - 9:56 am · Reply

“This is no different from Apple shipping iPods with PC computer virus back in October 18, 2006.”

Actually its VERY different. You plug your malware-carrying HTC Android into your PC and I’ll plug my malware-carrying iPhone into my Mac and the difference will become quite clear.
@macromancer

Wednesday, March 10, 2010 - 10:25 am · Reply

Aren’t you clever?

Love,
Bob
Mike from Fernie

Wednesday, March 10, 2010 - 10:56 am · Reply

The “security via obscurity” argument fails yet again.

Hadn’t even thought of that until I read it. Great comment.
1973Roger

Wednesday, March 10, 2010 - 11:58 am · Reply

This is another example of poor reporting by MDN. Does anyone remember when MDN actually reported news instead of injecting ultra-fanaticism “Apple can do no wrong” rhetoric whether warranted or not? My how things have changed from just five years ago. I consider MDN the “Fox News” of the Apple/Mac reporting community. It’s to the point where it’s amazing just to read what they’ll post to fire-up the extreme Apple fanboys, and I pity the site owners/operators for their lack of vision.

I’m a Mac user (both at work and home), but I recently purchased an HTC Droid Eris (Verizon, US). I have two friends who have iPhones (one with a 3G and the other with a 3GS), and I frequently lusted over their devices when compared with my Blackberry. I used my iPod Touch whenever I could, but there is not a high proliferation of open wifi spots in my area (so it’s use was somewhat limited when compared to potential use in a larger metropolitan area). Now that I have my Eris, they are actually jealous of my device. Sure, the Android Market is not as large as the iTunes Store (I use both on different devices), but HTC phones more than make-up for this with their superior UI (widgets) and their customization options. Combine this with the fact that AT&T;does not provide decent service in my area, and I have a vastly superior phone (compared to the iPhone) for day-to-day use.

For all of those who imply that this is representative of HTC (or even Vodaphone) as a whole, you might want to do a little more reading before you jump to conclusions.

I’m a Mac user, but it saddens me to think that a substantial amount of technology users view Mac users as petulant children. Even Steve Steve exhibits this whiny “my way is the only way” attitude. It’s not enough to make me switch from Macs to PCs, but it does grow tiring.
Jubei

Wednesday, March 10, 2010 - 12:25 pm · Reply

@1973Roger

Were you saying something? All we can hear was blah blah, blah blah
blah.
Pot

Wednesday, March 10, 2010 - 1:27 pm · Reply

Weren’t a few iPods shipped a while back with malware on them?
Jim - TIV

Wednesday, March 10, 2010 - 1:35 pm · Reply

Funny Jubei… seriously funny.
@Jubei

Wednesday, March 10, 2010 - 2:47 pm · Reply

“Were you saying something? All we can hear was blah blah, blah blah”

Oh Jubei you’re soooo cute and smart for a little boy!!! Pretend that you can’t hear facts!!! So Cute – - – - – -

Go kneel in front of your wall sized poster of Steve Jobs now…. You and Jim – TIV can pray together !!!
Derek Currie

Thursday, March 11, 2010 - 5:30 am · Reply

“… her Panda Cloud Antivirus went off, detecting both an autorun.inf and autorun.exe as malicious.”

Wow. Android sounds like it is just another version of DOS. Google couldn’t come up with something actually NEW? Android is so DOS that it can be infected with DOS based malware? WTF? And it is so compatible with that horrific DOS based OS WIndows that it can share malware with it?!

This sounds insane? What exactly, if anything, did Google actually innovate? Is Android just more of the Same Old Shite? Please tell me no.