New Android malware? Or just an ad network?

Symantec CounterClank diagram

Security firm Symantec raised eyebrows last week with a security notice about software it has dubbed Android.Counterclank, malware that the company claims can be found in over a dozen apps in the official Android market that have been installed as many as 5 million times. According to Symantec, CounterClank is a “bot-like” threat that, once installed on an Android device, can steal information and pass it along to a malicious host, and the software can respond to remote commands to carry out certain actions on the Android device. Devices with the software running might see a service running under the name “apperhand,” along with a new Search icon on the home screen.

A selection of the thirteen applications identified by Symantec have been pulled from the Android Market, but it’s not clear whether the apps were removed because of the presence of the possible malware or for unrelated reasons.

However, another mobile security firm, Lookout, says “Apperhand” isn’t malware at all: instead, they believe it’s an “aggressive form of ad network” that doesn’t have any malicious behaviors…but definitely pushes the limits of what users might expect an ad-enabled app to do.

“Malware is defined as software that is designed to engage in malicious behavior on a device. Malware can also be used to steal personal information from a mobile device that could result in identity theft or financial fraud,” Lookout wrote on its site. “Apperhand doesn’t appear to be malicious, and at this point in our investigation, this is an aggressive form of an ad network—not malware.”

According to Lookout, Apperhand pushes the envelope for ad network SDKs by including the capability to place a search icon on the mobile desktop, placing advertising in the Android device’s notification bar, and push bookmarks to the device’s mobile browser. Lookout admits they aren’t fond of these practices, but they don’t believe they meet the threshold for malware: the search engine, bookmarks, and notifications do no appear to be malicious. Lookout also notes that while Apperhand does forward along uniquely identifiable information, the same is true for nearly all ad networks, and Apperhand is obfuscating the data before it’s transmitted.

Both companies say they are continuing to investigate the software.

[Update 31-Jan-2012: Symantec has issued a follow-up detailing some of the Apperhand functions, and says they’ve confirmed the Apperhand code comes from a developer that publishes an SDK for monetizing Android applications. Like Lookout, Symantec questions Apperhand’s functions—including setting up home screen icons and pushing bookmarks without disclosure—but now stops short of calling it malware.]


Global Honor 20 launch marred by fear, as Huawei gets squeezed by U.S. ban

The launch of the Honor 20 series may be the first new device range to be seriously hit by Huawei’s presence on the Entity List. Huawei executives reportedly fear sales will be poor, which may force it to cut off shipments.

These are the best Pixel 3a XL cases and covers to protect your Google phone

If you want to change up the look or feel of your new Google phone, you want some decent drop protection, or both, then we have you covered with this list of the best Google Pixel 3a XL cases and covers.

Learn how to create a 360-degree panorama with your phone and Google Street View

Google Street View encourages you to explore the great outdoors, including landmarks, natural wonders, and even your own neighborhood. Learn how to create 360-degree imagery using your smartphone camera to add locations to Google Maps.

Put down the controller and pick up the best phones for gaming on the go

Which phones are the best if all you want to do is play some mobile games? We've done the hard work and put together a list of the best gaming phones on Android and iOS, so you can keep playing and winning.

Huawei Mate 30 Pro render shows 2019 really is all about weird camera arrays

The Huawei Mate 30 and Mate 30 Pro may join the Mate X folding phone as the company's star products for late 2019. This is what we know about the Huawei Mate 30 and Mate 30 Pro so far.

How to turn on Now Playing and see music history on your Google Pixel

The new Now Playing feature is perfect for if you often hear songs you like but don't know the name of. The feature essentially shows songs playing around you on the Pixel lock screen. Here's how to turn on Now Playing on your Pixel.

The stand-alone Palm is now available, but you don’t really need it

Palm, the reinvented company carrying the name of the brand we all know, has released a stand-alone version of its tiny phone. That means you don't need another phone to use it with, and you don't need to pay for another data plan.

The renewed Samsung Gear S3 smartwatch drops under $180 on Amazon

Samsung makes some of the best Android phones, so it’s no shock that this tech giant also offers superb Wear OS smartwatches. If you’re willing to buy renewed, then one of our favorites, the Samsung Gear S3, can be yours at a huge…

HMD Global is moving all Nokia user data to Finland to better protect it

HMD Global announced that in an effort to protect user data, it will be moving installation data and performance data to a Google Cloud data center in Hamina, Finland. According to Nokia, the move will allow it to better leverage data…

Leaked Pixel 4 display sizes could mean smaller bezels on Google's new phone

Rumors abound about the Google Pixel 4, Google's next Pixel phone following the Pixel 3 and Pixel 3a. Getting around the leaks, Google straight-up teased an image of the back of the phone. Here's what you need to know.

The best Google Pixel 2 XL cases and covers for protection and style

If you want to protect that 6-inch screen and aluminum body, it’s time to shop for the best Google Pixel 2 XL cases and covers. We've rounded up our top picks so far to style and protect your Google phone.

Nomad’s new Kevlar cables are seriously tough and seriously fast

Nomad has just released an update to its super-tough Kevlar range of cables to include a new USB-C to Lightning cable and a blisteringly fast 100W USB-C cable. They're expensive, but they're the toughest cables you'll find.

Rumors say Sony is making an Xperia phone with a six-lens rear camera

How many camera lenses is too many? In the current market, we've seen phones with one, two, three, and even five lenses -- and now rumors are currently saying Sony is planning an Xperia smartphone with six lenses.

The LG V50 ThinQ will be available from Verizon starting on June 20

LG has a habit of releasing too many phones. Following on the heels of the V40 ThinQ, the company has now unveiled the LG V50 ThinQ. There's 5G support, as well as an accessory that turns it into a foldable phone.