Researchers show VXers a better way to infect Mountain View's mobile OS
By Darren Pauli, 13 May 2014 Google's Bouncer Android defence tool is one of a dozen malware detection platforms that can be flawlessly skirted by malware employing smarter heuristics, researchers have found.Malware kitted out with virtual machine detection functions and clever heuristics could bypass seemingly any detection platform on the market.
Bouncer was employed by Mountain View to weed out malicious applications before they hit the official Play Store.
Researchers found it and other dynamic analysis platforms lacked the capabilities to foil most and typically all of the academics' heuristics which they built into their mutant malware.
"To assess the effectiveness of our techniques, we incorporated them in real malware samples and submitted them to publicly available Android dynamic analysis systems, with alarming results," the team of five university researchers wrote in (a paper (PDF)) titled Rage Against the Virtual Machine: Hindering Dynamic Analysis of Android Malware.
Full Article
One for our brethren that use Android...it just seems to me that whatever anyone does to try to be secure just about everything possible is being suborned for use as a potential vector for infection...very worry...and enough to turn some paranoid...I am sure.