Linked by Thom Holwerda on Tue 8th Oct 2013 21:46 UTC
Google

Until now, Google hasn't talked about malware on Android because it did not have the data or analytic platform to back its security claims. But that changed dramatically today when Google's Android Security chief Adrian Ludwig reported data showing that less than an estimated 0.001% of app installations on Android are able to evade the system's multi-layered defenses and cause harm to users. Android, built on an open innovation model, has quietly resisted the locked down, total control model spawned by decades of Windows malware. Ludwig spoke today at the Virus Bulletin conference in Berlin because he has the data to dispute the claims of pervasive Android malware threats.

This is exactly the kind of data we need, and Google has revealed it all. So, less than 0.001% of application installations on Android - and this specifically includes applications outside of Google Play! - are able to get through Android's multiple layers of security. In other words, saying Android is insecure is a lie.

Thanks to OSNews reader tkeith for pointing out this article.

Thread beginning with comment 574149
To read all comments associated with this story, please click here.
It doesn't matter
by darknexus on Wed 9th Oct 2013 00:20 UTC
darknexus
Member since:
2008-07-15

How secure an os is is irrelevant if the user installs something. I'm not aware of many Android malware instances that bypass, or even attempt to bypass, the security model. It's the same for Windows and Mac malware these days: malware doesn't need to bypass os security, because the users let it in on their own. There's no amount of built-in security you can do to solve this if you want to keep a platform open.

Reply Score: 5

RE: It doesn't matter
by tkeith on Wed 9th Oct 2013 12:57 in reply to "It doesn't matter"
tkeith Member since:
2010-09-01

With this will always be a problem. The point is to limit what the software can do, not what the user can do. How is the app permission model worse than the "administration rights" model on windows or even Linux. Click an OK, or type in your password and the app can do almost anything? Android already lets you disable some permissions(notifications) and I think they will roll out more in the next version. App-opps exists on 4.3, but is hidden by default.


Still I think your forgetting about the traditional virus model of taking over the system, not just accessing user data. The article is mainly about that Android security model.

Reply Parent Score: 2

RE: It doesn't matter
by Bill Shooter of Bul on Wed 9th Oct 2013 20:34 in reply to "It doesn't matter"
Bill Shooter of Bul Member since:
2006-07-14

There are apparently some that do according to the article. But that's why I prefer the stat of .12% of installations are malware thats the number that doesn't care about attempts to evade further detection.

Reply Parent Score: 2