News and Notes from the Makers of Nexus | Sonatype Blog

Researchers beat up Google’s Bouncer

Written by Ali Loney | June 25, 2012

Dark Reading – (International) Researchers beat up Google’s Bouncer. Two security researchers from security firm Trustwave submitted increasingly malicious versions of an Android application to Google Play, Dark Reading reported June 25. Each variant of the application was scanned by Bouncer, Google’s security-checking application, and it failed to flag them as malicious, the researchers plan to report at the Black Hat security conference in July. They limited the attack so no users were impacted, but they could have stolen photos, contacts, and passwords from the phone. At the end of their experiment, they created a botnet capable of a denial-of-service attack, similar to the Low-Orbital Ion Cannon software used by hacktivists.

Source: http://www.darkreading.com/securityservices/167801101/security/vulnerabilities/240002673/researchers-beat-up-google-sbouncer.html