Linked by Thom Holwerda on Thu 14th Mar 2013 10:26 UTC
Google In all honesty, this has taken far longer than I anticipated. Google, the world's largest internet advertising company, has removed several popular ad-blocking tools from the Play Store. While they are technically in the right to do so - they violate the Play Store developer distribution agreement - it's still a bit of a dick move. Luckily, though, unlike some other platforms, you can easily sideload the adblockers onto your Android device.
Thread beginning with comment 555505
To view parent comment, click here.
To read all comments associated with this story, please click here.
WorknMan
Member since:
2005-11-13

On PCs sure. But I've yet to hear about Android malware spreading via adverts (if you have any evidence to the contrary then I'd be interested to read it ;) ).


I don't know of any specific cases on Android, but I'm guessing it's only a matter of time, either through applications or the web itself.

Furthermore, preventing advert-based malware from spreading on the PC can be largely mitigated by disabling a few things like Java plugins from auto-starting.


Right, you could disable Java, Flash, Javascript, etc, which would probably block most ads by default, and break the web in the process.

People rarely pay any attention to the permissions list when installing new applications as it is, adding other things like whether it's ad supported would just create an even bigger wall of text and encourage more people not to bother.


Actually, I was thinking more of a setting in options that says 'do not list any applications with adware'.

Reply Parent Score: 2

Laurence Member since:
2007-03-26


I don't know of any specific cases on Android, but I'm guessing it's only a matter of time, either through applications or the web itself.

Google controls most of the in app ads so I'd be surprised if anything leaked through that way. But I could see the potential with web adds though. In either case, users would have to have side-loading apk files enabled, and even if that is, users would still be prompted with a permissions / install screen should an apk file try to auto-install.

I will admit that I've not done a huge amount of security testing in Android (unlike securing Windows and Linux; which is part of my day job), but I think it's quite hard to sneak malware onto the phone itself without tricking the users into installing an apk. So the biggest threat would be more social engineering (eg porn sites that say they are only viewable via a specific Android codec) than drive-by downloads and other such attacks that silently infect the client.

Right, you could disable Java, Flash, Javascript, etc, which would probably block most ads by default, and break the web in the process.

You don't really need to disable Javascript. It shouldn't be possible for Javascript to break out of it's sandbox. I mean, obviously there will be bugs and vulnerabilities that can be exploited, but the same is true for anything that can be rendered (even the JPEG format has been known to serve malware in the past). Such vulnerabilities usually get patched pretty quickly though, so it's more a case of keeping your browser up-to-date and Java plugins disabled (Java and Flash are by far the biggest two weaknesses on a modern browser).

Actually, I was thinking more of a setting in options that says 'do not list any applications with adware'.

That's not a bad idea. I like that ;)

Edited 2013-03-15 01:00 UTC

Reply Parent Score: 4

WorknMan Member since:
2005-11-13

Such vulnerabilities usually get patched pretty quickly though, so it's more a case of keeping your browser up-to-date and Java plugins disabled.


Or you could just not install java and save yourself a lot of unnecessary bullshit. I haven't run java on any of my pc's in several years, and don't intend to start anytime soon.

Reply Parent Score: 2