Symantec has found more malware in the Android Market1, even going so far as to give the app it's own 'viral' name AndroidOS.Tapsnake. Symantec states that Tapsnake sends your GPS data, and users with another application can read your location. And they're right -- but read further and you'll see that calling this any type of threat is as silly as developing it in the first place.
In Symantec's own words:
"For the application to really be used maliciously, an attacker would need to have access to the phone to install the program. For it to work, an email address and “key” must be typed into the phone running AndroidOS.Tapsnake. This same registration information must later be typed into the phone running GPS Spy."
In other words, you not only have to download a Snake game that tells you it's going to use your GPS data, you also have to enter a keyword, and the e-mail address of the person who will be doing the spying.
There are real threats out there, but this isn't one I'm going to worry about. Watch what you download and use the tiniest bit of common sense and you'll be just fine. [Symantec]
1. author's note: I tried seven different Android phones, and couldn't find Tap Snake on the Android Market. Symantec says it is available, so your mileage may vary.
- Filed under: