We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Researcher: T-Mobile G1 antivirus is unnecessary

Comments made as SMobile releases Android AV

T-Mobile G1 users may not need antivirus software, despite reports of security flaws in Google's Android operating system.

The news comes as antivirus developer SMobile released software to protect owners of the handset, which is based on the Android platform.

Even though Android is open source, it is unlikely to be more susceptible to malware than other, proprietary mobile operating systems, said Charlie Miller, principal analyst at Independent Security Evaluators and the researcher who found the first Android vulnerability.

While a developer could write a harmful application and distribute it via the Android Market, Google has put up some roadblocks that would make it hard for malware to cause much harm, Miller said.

"If you want to do anything dangerous like access personal contacts, you have to specifically say to the virtual machine 'these are things I'm going to have to do', and the virtual machine will ask the user if that's OK," he said.

Google Android applications run in a Java virtual machine on the phone. For example, if a user downloads a Scrabble game containing malicious code that tries to gather information from a user's email account, the phone will ask the user to approve the application's access to the email account. In that case, the user would decline the download, realising that a Scrabble game shouldn't need to read from an email account, he said.

Last week, however, hackers discovered a way to install applications natively on the phone instead of using the virtual machine. The capability could open doors to new security threats by letting applications access any phone function. Google said it has developed a fix for the bug and plans to push it out to users soon.

That is the second vulnerability to be discovered in as many weeks. The first, discovered by Miller, resulted from Google using outdated open-source code that didn't include an update already issued that closed the hole. But such vulnerabilities aren't unique to Android or open-source software.

"The fact is, you could do that against the iPhone or against the BlackBerry or whatever. All these phones have issues," he said.

SMobile argues that because Android is open source, it will attract more hackers who will be able to look for holes they can exploit to gather user data for malicious purposes.

NEXT PAGE: Only a few mobile viruses have appeared so far


IDG UK Sites

Windows 10 release date, price, features. The next version of Windows will run on everything:....

IDG UK Sites

An Apple fan's perspective on the Windows 10 launch

IDG UK Sites

Sensor-laden kids' watch with 3G launches in Japan

IDG UK Sites

2014 Retina iMac release date rumours, specs and features: 27in 5K Retina iMac 'launching this mont'......