Android malware (Juniper Networks)

In the wake of numerous reports that all point to the same conclusion – that malware infestation is running amok on Android – the Internet giant made an unusually open statement through the mouth of its Android lead, Sundar Pichai, who finally admitted that Android wasn’t built for security.

“If I had a company dedicated to malware, I would also be targetting Android”, Pichai allegedly said to a stunned audience at Mobile World Congress in Barcelona, Spain. When your own platform lead starts making such frank statements about Android security, it’s high time you considered taking these security reports at face value…

Here’s a machine-translated quote from the original in French, via FrAndroid:

We cannot guarantee that Android is designed to be safe as the platform was designed to give more freedom.

When people talk about 90 percet of malware on Android, they must of course take into account the fact that it’s the most used operating system in the world.

If I had a company dedicated to malware, I would also be targetting Android.

Actually, Android accounts for an unbelievable 98 percent of all new mobile threat detections, Kaspersky Lab said yesterday.

As Daring Fireball‘s John Gruber noted, Google has indeed become the new Microsoft.

The old Windows line of defense: Android is so popular of course it has all the malware. For some reason, though, that’s the only sort of software where Android leads iOS in third-party developer support.

For the sake of completeness, Google Chairman was ridiculed last October during a question-and-answer session at the Gartner Symposium over his stubborn insistence that Android is more secure than the iPhone.

Android’s susceptibility to malware is often ridiculed by the Apple camp and even Apple’s own executives aren’t immune to this. For example, Apple’s own marketing head, Phil Schiller, last March tweeted out a link pointing to a mobile security report criticizing Android’s lack of security.

While Android’s popularity does make it an attractive target for malware creators, there’s no denying the fact that, at its core, Android is less secure than iOS or Windows Phone for that matter. If it were the other way round, Android – not iOS – would dominate in large scale enterprise deployments.

Android robot (image 001)

Part of it is purely technical.

Because most Android devices ship with a combination of open source and proprietary software, complexity increases which in turn introduces numerous attack vectors.

Another facet to this debate is Google’s proclaimed openness: the company doesn’t screen app submissions so malware disguised as innocent-looking apps easily sneaks its way into Google’s Play store.

To its credit, Google removes malware as soon as it’s been discovered and written about, though the damage by then will have already been done. This is in stark contrast to Apple, which curates the App Store content to ensure that only high-quality, malware-free apps make it into the store.

Which isn’t saying Apple’s devices are immune to security vulnerabilities.

750x625xiOS_Overall_2-25-14_0.png.pagespeed.ic.hC-isy2NsD

They are not.

A nasty SSL bug discovered last week made all iOS devices and Macs vulnerable to man-in-the-middle attacks. A few days later, Apple issued a crytical security patch via OS X Mavericks 10.9.2, iOS 7.0.6/6.1.6 and Apple TV 6.0.2 software updates.

Responding to the security scare, 13.3 percent of active iOS devices in the wild were spotted running iOS 7.0.6 just 48 hours after its release, ad network Chitika noted. Two days later, the adoption figure has risen to 26 percent of total iOS-based North American web traffic, a cool thirteen percentage point increase.

Another example: a new iOS security flaw makes it possible for attackers to covertly log every touch a user makes, including keyboard and Touch ID presses.

Apple yesterday added new features to its suite of enterprise deployment tools, making it easier to manage fleets of devices remotely, deliver configuration profiles wirelessly and more. The company has also issued a refreshed version of the iOS Security white paper [PDF download] which offers new details on how iOS 7 and hardware features such as Touch ID, A7 and Secure Enclave boost iOS security.

  • abdullah575

    apple push updates to fix issues !! e. iOS 7.0.6 ,and andriod don’t fix thier operating system !! andriod = malware+ viruses iOS= more source!!

    • Lady GAGA

      Great you are

      • sjimmiep

        Yoda you speak.

      • Oo, look! It’s the REAL Lady Gaga! Wow!

    • Chuck Finley

      Apple push their updates to fix issues do they? The SSL bug has been around since iOS 6. That was in 2012.

      • Rowan09

        Dude you can’t be serious. I hope you know nothing is perfect as we all accept and Apple patched the fix after they found out, it wasn’t from an outside source from our knowledge. We all accept Android is not secure and IOS is more secure but they both have flaws.

    • shitbox fangay

      Every popular and open souce OS in this world would be no. 1 target for virus and malware idiot! So does Windows for PC, but no one talks or bitching about it. Moron!

  • Guest

    google wasnt desinged to be an operating system

    • Taf Khan

      No but that green robot was designed to look like a trash can. 😛

      • Agru

        Just like the new Mac Pro I guess ;D

      • Taf Khan

        Yes but the Mac Pro doesn’t produce crappy low end plastic trash phones.. 😀

      • Agru

        Yeah maybe Samsung entry level phones are crap, but Google Nexus ones (and especially 5) aren’t bad at all!

      • shitbox fangay

        steve blowJobs was designed to be a computer salesman, thats why he never invented anything in his pathetic life. And so does the company, the rotten apple. And ios7 is supposed to be a trash can where all the patent that apple bought from another company being thrown there. Appletard inc. engineer and exec is a bunch of idiot who never invented anything but always butthurt about patent.

      • Taf Khan

        So says a man called shitbox… lol Says it all really.

        You can’t argue with the sucess of Apple. Apple is successful regardless of your opinion.

      • shitbox fangay

        Success?, success of what?????, i will never brag about my success if i get it via my dirty bussines practice. What they succeeded at anyway, INVENTING ROUNDED CORNER?, INVENTING THEIR OWN SHIT IN THE TOILET?

        And shitbox is for microsoft x-box moron!

      • Taf Khan

        Being the most valuable tech company in the world? Would you not call that success? Ahem… Your name is very fitting for sure

      • shitbox fangay

        The most valuable tech company in the world?, sayz who?
        Any link? These asshole didnt even invented anything!

        Even if its true, back again to what i have said before:

        “i will never brag about my success if i get it via my dirty bussines practice. “

      • shitbox fangay

        And apple logo was designed to be look like a rotten Steve Job’s shit when he poop.

      • Taf Khan

        Well your name is Shitbox so I guess if anyone investigates what other peoples shit looks like Its you… Tut tut

      • shitbox fangay

        But apple logo look like a stinky rotten apple with maggot inside

    • BozzyB

      No not google. But Android was.

  • kevin chang

    android wasnt designed to be an operating system

    • BozzyB

      iOS is no operating system. Or do you want to tell me it is a feature of an OS that you have to update every single third party app to use the new “OS” keyboard? Or that every single app which you want to share over has to be added by apple to the menu? Or if I log into the facebook app with my account and I now share something from a diffrent app I need to log in again because iOS can’t use the original facebook app for it and needs its own implemenation? And so on.. Are those “features” of an modern OS? It’s a one step forth, one step back application. Thats all it can do.

  • Snailpo

    My Girlfriend wasn’t designed to be an operating system..

  • omrishtam

    gasp* NO WAY!

  • Carlos Gomes

    But but… it’s open source!
    (That’s what counts, right guise?)

    • sjimmiep

      …and there’s more freedom!

    • ✪ aidan harris ✪

      Which begs the question why is it so insecure? Ubuntu is Open Source and beat every other OS in a recent GCHQ security report:

      omgubuntu .co.uk/2014/01/ubuntu-12-04-secure-os-uk-government-gchq

      • Chuck Finley

        Because not enough people use Ubuntu for it to be a worthwhile target for malware.

        Most people don’t write malware just for kicks, they do it to mine personal information and I know it sounds like an excuse (“Oh our system is the most popular, therefore it’s the biggest target for malware”) but think about it, it’s true.

        If you’re spending time and effort coding something you’re going to want the biggest return on your investment, if you’re programming something that steals credit card details you’re obviously going to want to trick as many people as you can, therefore you target the most popular system. Android market share was 79% in 2013 AND it’s open source, so obviously malware developers are going to jump all over it.

        Linux’s (that’s ALL Linux distros) market share is currently 1.6%, compare that to Windows (XP, Vista, 7 and 8 all together) which stands at 90% of the market. Would you bother writing something that targets 1.6% of your potential target base? Hell no.

      • ✪ aidan harris ✪

        Ubuntu and Android afaik both share the same kernel (although I’d imagine it’s slightly modified for both OS’s). One of the differences between Ubuntu and Android is that security is at the forefront of Ubuntu. Ubuntu is trusted by many businesses so please don’t act like nobody wants to write malware for it since I’m sure if they could they would (because what scammer doesn’t want to infect a business machine?). When Google themselves admits security is not one of their priorities then alarm bells should immediately be ringing to anyone using their OS and I’d imagine that this is the primary reason that businesses end up choosing iOS over Android…

      • Chuck Finley

        Um, what? Slightly modified is a massive understatement. They are entirely different things and that’s why one’s more secure than the other, Ubuntu wasn’t built from the ground up to be more secure than Android, the reason why it’s secure is because it works differently to Android because it has an entirely different application. I mean seriously, ONE of the differences? To be clear: Ubuntu is secure by it’s nature. Android is unsecure by it’s nature. The kernel is the only thing they share in common, they are completely different OS’s.

        How many businesses do you think run entirely on Ubuntu? You’re seriously kidding yourself if you think it’s a big enough percentage for malware developers to care about. Again, most businesses use Windows. Again, you’d want to go for the most used OS, which is Windows. Why would you specifically target a business that runs Ubuntu by writing malware for the WHOLE OS? There are probably far easier ways to gain access to what you want.

        Google isn’t admitting that security isn’t a priority, you’re making that up entirely; a. this article is biased as hell and b. you’re clearly a massive fanboy so of course you’re going to want to imply that. Google are simply stating that Android isn’t secure and that yes, it is a good target for malware. These are things that are completely obvious when you consider what Android is. Google hasn’t said they don’t care, they’re just stating facts and you’re extrapolating from a simple statement.

        And really? You think this comment, made in 2014, is the main reason why businesses choose iOS over Android? When that’s been the norm for a couple of years before this statement?

        Businesses and governments choose iOS over Android because yes, it IS more secure because it’s closed source and Apple carefully vet anything that wants to enter their ecosystem. Google has NEVER said that security is not a priority.

      • ✪ aidan harris ✪

        “How many businesses do you think run entirely on Ubuntu?”

        I don’t have exact figures but as far as I know the majority of servers (especially web servers) in the world run some sort of Linux operating system so the answer to this is not many run entirely on Linux but the majority of businesses likely have some sort of Linux based operating system pulling strings somewhere. Android is insecure but it does not need to be this way. No matter how much people are using Android it can (and should) still be secure. There’s no need to pull the “We’re a popular OS so are obviously going to have a lot of malware” card since that is not the case. Yes people will target the biggest market but that should not mean that the biggest market should just accept that and hold their hand in the air saying that they know their OS is insecure and just do nothing about it…

      • Joey_Z

        What would you rather steal from? An OS used by less people, but every account is associated w/ a credit card. Or an OS which is installed on every cheap phone all over the world that is used by people who don’t even have a credit card or simple don’t need one to install apps?
        Targeting android for identity theft does not make sense, unless it’s for hijacking browsers and making profit on ad click rate.
        The only thing I can imagine hackers gave up on other OS and focused on android is because it’s much easier.

      • Chuck Finley

        You are joking right?

        Firstly, wow, what a moronically stuck up attitude. How’s it going on top of that high horse of yours? You’ve just answered your own question, “Android is installed on every phone all over the world” – of course that’s the better target for malware. You seriously think malware is targeted towards specific people? And you seriously think the ONLY thing malware is interested in is credit cards?

        That was one example of what malware is after. You seriously don’t think malware is interested in general personal information that, by the way, no matter how poor you think somebody is, everyone has?

        I don’t think you have any grasp of how much of the world works. Android is literally the perfect target for identity theft. I mean Jesus Christ, why do you think Android is being overrun by malware? Because every malware developer is just a troll that wants to replace your boot logo with a trollface and yell LULZ GOT YOU? How are you seriously this much of a moron?

      • Joey_Z

        I think you read my previous post with your own attitude….

        I know for a fact that most of the world population do not live in where you are living. I also know what kind of phone they use and how they use their phones. Most of the world population do not have a credit card, and that is a fact. Some of these android users don’t even have a google account. Some of these users rely on third party sellers to setup their phones. So most of the “personal information” you mined are fake at the first place…

      • Rowan09

        When IOS was more popular than Android, Android still wasn’t as secure. Your confusing popularity with security because IOS is still more popular than Android. Android is installed on so many devices other than phones and tablets that it’s almost impossible to keep track. Android is less secure because they don’t care about it being very secure it’s just that simple. I would understand your argument if this statement wasn’t made but it was and there’s no getting around it.

      • Chuck Finley

        How is iOS more popular than Android? Have you not seen the market share, or are you talking about all the moronic hype that surrounds iOS?

        I’m really not confusing anything. iOS is by default more secure than Android. How are you not getting this? Android is open source, iOS is closed source. One is more secure than the other.

        Where has Google said they don’t care? Where’s this statement? Please quote verbatim where Google imply they don’t care.

      • Rowan09

        Look at the sales. Android is on more devices but as I stated there’s no way to tell how many are phones, tablets, hdmi sticks, etc. Giving away phones also adds to the market share and most of the phones as stated before on many sites are sub par Android phones. If you read the quote it was very dismissing as if we are on more phones so that’s the only reason why we’re malware infested. He made it clear we made it open source so people will of course know we will be malware infested. He didn’t come out and say we careless but if you read his statement it sums it up. Nevertheless Android is malware infested and that’s a fact, we know IOS is more secure because it’s not as open as Android.

      • erod434

        “There is no way to tell how many are phones, tables, hdmi sticks, etc”
        That is 100% false information. The worldwide statistics are calculated in terms of phones only and android clearly winning.

      • Rowan09

        I hope you know they have watches with SIM cards that’s Android. Samsung doesn’t give sales figures or any other Android manufacturer. How can you find the install base when I bought a HDMI dongle with Android 4.2.2 on it? It’s very hard to give an exact number but Android is absolutely on more phones than IOS, we are all aware of that fact.

      • Cheese

        The real fact is that less than 1 percent of Androids actually get malware….

      • Only reason it’s not secure is ’cause Google refuses to properly moderate the PlayStore. Thus, malicious devs can just dump all their malicious apps in the PlayStore without questioning.

        That seems to be changing with this new update to the PlayStore app (http://bit ly/1pA86w2). Still not the complete answer though; there’s probably still many duplicates of legit apps (like BBM) that are just adware/malware…soon as Google takes the time to clean that up, all should be as secure as iOS.

      • Rowan09

        From this interview it doesn’t seem like they care about cleaning it up.

  • Rowan09

    Wow. I wouldn’t admit this even though it’s true. So you make an insecure OS and people should trust you why now? Now I really wonder how the fingerprint information is stored on the S5.

    • Chuck Finley

      They didn’t purposefully make an insecure OS. They purposefully made an open source OS, which, by definition, will be more vulnerable compared to something as tightly walled in and controlled as a closed source OS like iOS.

      There are pros and cons to everything. Just because Apple made your phone does not mean there are instantly no cons to your device. Just because iOS is closed source does not mean that iOS is without it’s flaws.

      Lastly, you appear to be confusing Samsung and Google. Google make Android, the OS that Samsung phones use. Samsung make the S5 with the fingerprint sensor, hence Samsung are the ones who are responsible for how the fingerprint information is stored. I’m not saying Samsung are doing it right (in fact, I’m just as interested to find out how they’re storing fingerprint data), but just because an OS itself is open source does not mean you can’t then code secure stuff that runs on that OS.

      • Rowan09

        Who said anything about IOS being flawless? We are all aware on this blog nothing is flawless. The FBI was hacked by Anonymous so we’re not stupid. Google did make a insecure system because they even said it as if it’s no big deal. Someone posted here about Ubuntu also being open source and it’s secure. One of the problems with Android is the Playstore, it’s an absolute mess. If Google clean up the Playstore they will get rid of a majority of their malware issues. In regards to Samsung, while they make the hardware they are still using Googles software. Am I suppose to believe after this statement the OS doesn’t store anything in regards to your fingerprint?

    • ✪ aidan harris ✪

      The fingerprint is scanned and then converted to ascii art and stored in a plain text file in your dropbox public folder for everyone to see.

      /Sarcasm

      • Rowan09

        Lol

  • Rowan09

    I’m really disappointed in the Android guys that comments on this blog. The S5 came out with nothing new but a scanner and camera and now this. Where are these guys when there’s bad news about Android?

  • erod434

    It’s funny how people think that the android play store is full of malware when in reality there is around 25,000 malicious apps in the play store. Considering there are around 1,400,000 apps in the app store. That makes the total malware around 1.8% of all apps in the play store. Futhermore, the vast majority of these apps are sketchily named Russian apps or popular knockoffs of apps like angry birds and more importantly all apps show the permissions granted unlike in ios. This is a fact largely unknown but any smart user will check the permissions which show up before installing any app. Because of this the reality is that malware is a small issue that effects only a few thousand at most of people who either try to pirate apps from other app stores besides the play store (which due to the openness of android is easily done). However, with android 4.2 and the addition of the google play services and google’s verify app which if the user selects yes when installing an app from outside the play store, the app checks the app and verifies that it is safe before installing, providing users another safety blanket. Add this to the fact that there will be a new update to this google verify in the next few days that will check any app running in the background to make sure its not malicious and googles statistic that only .001% of malware is able to get passed this security seems very believable. Perhaps the best part about this update is that it will role out using google play services which means that 99% of the google android ecosystem will receive this update without even knowing.

    • Quang

      glad that we have Apple employees to check these things for us…so we dont care about malware on iOS 🙂
      and one more thing: dont try to go to iDownloadBlog to Android-lize us haha it just waste your time haha

      • Chuck Finley

        It’s called having a balanced point of view, you moronic fanboy.

      • Palmer Paul

        The checking process is automated, so it is possible (and does happen) that malware can slip by into the App Store. Although this doesn’t happen much, it’s good to know the limits of your device’s security.

    • slatts

      You don’t really think anyone is going to read your long winded “Android is great” post do you? Hope you are paid well to post this crap.

      • erod434

        A) I never once said android is great. In fact I like ios on my iPad just as much as I like android on my nexus 5. All I did was disprove the idea that android is “malware infested” like the media suggests and you seem to believe.
        B) I guess facts are “crap” to you.

      • Agru

        He’s just expressing his opinion, I think YOUR comment is crap. Not useful, off topic, offensive. Yeah that sounds like crap

      • Chuck Finley

        Do you instantly think that anyone with an opposing view to yours is being paid off? Has it not occurred to you that some people aren’t idiotic, blind sheeple fanboys?

    • “It’s funny how people think that the android play store is full of malware when in reality there is around 25,000 malicious apps in the play store.”

      That’s still a lot of malicious apps in a meant-to-be-controlled environment. Until Google takes the time to create a moderator team (out of it’s hundreds of thousands of employees) who inspect each and every PlayStore app for malware (present and future), we’ll keep seeing news like this.

      Being open source doesn’t mean you have to live your front door open.

      • Chuck Finley

        It’s 1.8% though. That’s still pretty damn small. Obviously any malware is too much, but that’s still just about a 2 in 100 chance of downloading something that’s malware.

        I imagine it’s like using Windows though, you just have to use your brain when you’re downloading things and if something seems dodgy, don’t install it.

        You are definitely right though, any kind of app store benefits from being moderated and controlled. Even though it goes against the whole open source mentality, end users are dumb. A lot of the time people don’t use their brain when they install things.

      • Rowan09

        Yes 1.8% of all the apps but are there really that many real apps on the Playstore? They have so many fan made apps, etc it inflates the number. Google only cares about advertising so that’s why the Playstore is such a mess.

      • erod434

        Yea but if you look at the articles about android, they all use bigger percentages to scare users. Look at the picture in the article. “92% of all known malware” It grew “614%” Had I not pointed out the actual more realistic numbers (probably lower than mine considering my estimate for malware is on the high end of the spectrum), the many readers would incorrectly associate these numbers with the percent of malware in the play store. Also if you think the play store is a mess then so is the app store. Its the nature of mobile app markets, the vast majority of the apps downloaded are the most popular one’s made by trusted developers, but there are always alot of junk that no one uses.

      • Rowan09

        I think the 92% is phones affected or % of programmer’s attacking Android OS. There’s no replacement for common sense but some people with Androids don’t know about technology and Google need to protect those people.

      • “I imagine it’s like using Windows though, you just have to use your brain when you’re downloading things and if something seems dodgy, don’t install it.”

        It pretty much is. I’ve been avoiding Android mostly due to this problem in the PlayStore; as I couldn’t justify carrying around the worries I have on my Laptop/Desktop/Tablet PC (which is significantly more capable) on-the-go with me on my SmartPhone PC, when I don’t have to (with freed iOS <= 6.X). Now that this is changing with the Google Verify service (http://bit ly/1pA86w2, and official iOS has taken the fugly Windows phone route :P), I'm more eager to give official Android a shot on the S5.

      • Rowan09

        Please tell me your opinion on the S5. I want to try one but see no reason to actually buy one for myself.

      • It’s got the guts of the Note 3, with a bit more hardware features.

        Hardware wise, I prefer it over the iPhone 5/5s metal body design, which bends-easily, dents-easily and scratches easily (even when in a case), based on in-person observation and online posts (one being from jailbreak dev iH8sn0w). With 4x the RAM of my 4s, I believe I can have my background tweaks still running while I play some fun live multiplayer games like Battle Run (on my 4s, had to go into safe mode, otherwise, that app wouldn’t run smoothly). Finally, I like that it’s water resistant out of the box, thus I don’t need a bulky case just to quickly take under water pics/selfies, in conjunction, less worries when I’m at the bus stop in the rain 😛 I could have just gone for the S4 Active earlier, but couldn’t justify carrying security worries on-the-go when I don’t have to (with freed iOS).

        Software wise, based on in-store experience of touch-wiz on the S4, I find that it has most of my jailbreak tweaks preloaded in the stock touch-wiz while still being smooth in performance. Thanks to the openness of Android, rooting it should be easy, then I can remove whichever apps I don’t like (just like I got rid of Newstand, Nike+iPod and iAds from my freed 4s). Finally, themes (i.e. skins) are readily available on the PlayStore to make it look the way I want.

      • Kelv_Awesome

        I’m also deciding to get myself S5 lol did you know any Root website that is working?

      • Personally, I just google “Root (Android Device Name Here) (Android Version Here)”, without the quotes. The one I went to for rooting a friend’s GS2 was AndroidCentral (http://bit ly/1mJEYn8).

      • felixtaf

        XDA developers my friend! The source of root, roms, patches etc etc etc!

      • Rowan09

        While it’s water resistant I don’t know if I would actually put it in water since it’s not waterproof. I’m not a fan of plastic and my Note 2 scratches just as easy as my 5s. My Note 2 crashes a lot and I don’t even use it much. I will go and use the S5 in store when it comes out but the experience is going to be like the Note 3 and S4 as you stated. The iPhone doesn’t bend easily it takes some force to actually bend the frame.

      • felixtaf

        I seriously hopw its not the same tech (water proof/resist) like S4 Active. S4 active was a failure and so many issues about its water proof/resist tech.

        If you are not into Samsung, try Xperia Z2. Its actually has 3 GB ram and better build.

        If you like bigger screen, go for Note 3. I jus upgraded from my LG G pro to Note 3. It has 3GB ram (still shows 1.6/2.4GB free ram on normal use). Love the phone though. S5 is basically a S4S or S3SS!

      • felixtaf

        Your note 2 is from which carrier? You can always install a debloated custom rom based on stock touch wiz. It will be lighter and gives better performance!

      • Rowan09

        It’s with t-mobile but I only use it with wifi. I might try that and see if it works better.

      • felixtaf

        Try Cleanrom ACE from Scottroms. I had a TMobile note 2 and it was running flawlessly on this rom. Its simple and you can choose what u wan tin your rom while installing (via aroma installer). I think dload will be about 900mb. U need root and a custom recovery installed (prefer TWRP).

      • Rowan09

        Thanks.

      • felixtaf

        For best touchwiz experience, you should get a debloated rom (if you are buying a carrier version of the phone, it will be helpful).
        Bloatwares in carrier based android phones will eat memory and ram. I had a Moto Razr Maxx from Verizon and I actually removed nearly 40 bloatwares (Although it depends on carrier). If you get an international version, you will only have Samsung apps with bloats (coz many apps are location based).
        I personally suggest you to try out Note 3 before going for S5. You wont regret!

      • erod434

        While it is a large number, proportionally with the way apps are download (the vast, vast majority of mobile apps that are downloaded all reside within the top 1,000 most downloaded) that is a relatively minor number. However, I don’t think these articles are even referring to the play store. The problem is that android out of the box allows users to install .apk files from any source whether it be in the play store or from a russian online website as seen be the “500+ app stores that contain malware on android” in the article. However, what these articles do not mention is that in order to even install these apps, the user must go deep into the settings and turn on install .apk’s from outside sources, which the vast majority of users wouldn’t even know how to do. Once they do this there is another security level which asks users if they want to turn on google watch which will detect malware in any outside source app during installation.

    • M_thoroughbred

      I’m not here to argue with you but your statement about permissions is completely false here is what you said “more importantly all apps show the permission granted unlike ios” that statement is completely wrong. Android you have to accept all the permissions that are asked in order to download the app. In ios you download the app and when you open it your are then asked permission on the info the app wants which you can deny the access to those permissions and still use the app. For example on android download app view permissions and either accept and use the app or hit the back button to decline but can’t download the app. In ios download the app, open the app and then you see the request for permission/s which you can deny and still use the app. With that said I agree that when you have an so that is being used by larger amount of people then you will be come a target period. What do you think apple considers jailbreaking? That question wasn’t directed to you. We all know that ios is more secure but the question still lies how much more secure is it. I use an iphone and won’t use any other but that’s my preference I won’t knock someone for not liking the same things I do instead I welcome them.

      • erod434

        I know that on android you need to accept all the permissions in order to install the app, but that wasn’t my point. My point was that you could see if a simple app such as a flashlight requires the ability to view my contacts, or send phone calls or text messages, therefore showing that the app is malicious. On ios by comparison, you download an app without knowing the permissions the app will be able to use. For example, an app might be able to read you’re text messages in the background on ios without you knowing. However, ios does ask you for a few permissions such as being able to access location, but that’s about it.

      • M_thoroughbred

        The apps permissions in ios are as follow contacts, photos, safari, location, microphone, Facebook, Twitter, passbook, motion sensing. Bluetooth sharing, calendar, reminders and so on. Your point on Android is the same point I’m making for ios I’m just letting you know some of the info regarding ios was inaccurate. Furthermore in iOS you can got to settings>privacy and view which app is using what and that app can be switched off if the user chooses too.

  • jack

    Related: water is wet

  • ✯Mike✯

    I truly believe this entire article. I have had a Droid Razr M, and a Galaxy S3 and neither are stable nor safe. I do read the permissions but they are extremely deceptive. iOS has a team that goes through every app thoroughly before it is release. Play store simply flips through the code and puts it out there to the public. Not safe. Period.

    • erod434

      That’s why 94% of malware on android comes from outside of the play store. The vast majority of users will never experience or even see a malicious app as they do not look outside the play store.

      • ✯Mike✯

        In a way, yes. But most of those app stores are from the play store to begin with

  • Just in time for me to try Android on an S5…thanks for sharing.

    • Steve

      S5? Really? You’re better off with the next HTC One, even last year’s HTC One is better

      • Thanks for the advice, but I’ve done my research. Being a jailbreaker who really likes tweaking their device (4s), most of what I jailbreak for seems readily available in the stock Touch Wiz. After a quick rooting, I can easily remove the apps I don’t want.

    • Scott

      I am waiting to see what the next samsung note will have along with the rumors of the larger iPhone. If they release a 5.5″ iphone…I will stay with apple. If not, I will probably switch to the note for 2 years to give it a try.

      • You’ll love the Note. Best phone out there. No lag, like other older Androids/iphones. And can do so much from it’s IR blaster, to thermometer to multitasking to s-pen (which is wacom the best) to long lasting removable battery, etc. My wife won’t return to the iPhone but I might if they come out with a 5.5″, but definitely not if they only have 5″ iphone. I’ll be swayed to whoever has OIS if they both have huge screens.

      • felixtaf

        +1. S5 < Note 3!

  • Decio Arruda

    NO SHIT

  • Dante Arellano

    Androide is better cux we have widgets and a bigger screen than cover all the face like tablet jajaja

  • neoamaru

    i use both..& to be quite frank, despite the fact that iOS is mostly safe & there’s a lower frequency of malware attack, it is quite high in respect of Severity,
    Android on the other hand is only as safe as you want it to be…you’re literally holding your heart in your hand..
    bottom line, none of them is better than the other in my humble opinion ^^’

    • Rowan09

      You have to be kidding me. IOS is more secure than Android and that’s not an opinion. Does it mean Android is useless no but it’s less secure.

  • Sandy Cook

    You know why it’s more susceptible to malware? Because you can choose to be able to install whatever software you want. Exactly like iOS after you jailbreak it, except you have the choice to be able to install software at your own risk, you don’t have to exploit security vulnerabilities in order to do it (lol @ iOS being ‘secure’)

    It’s like saying that a PC is more susceptible to malware than an analog clock.

    • Rowan09

      A lot of the malware is on the Playstore.

      • Sandy Cook

        Repo problem, not OS problem

  • Palmer Paul

    *critical

  • s0me

    Yeah well they only cover bad news about Google here, the only unbiased articles are those about jailbreak tweaks but Jeff had bad luck with a Samsung TV and he had to say Samsung is so crap while reviewing the PS3 controller tweak.

  • Chris

    No one knew it was there as regression tests around the security layers where not carried out as normal by Apple and the security experts within the community.

    While the exploit may have been there the chances that any large number of people were targeted by using it is slim to none, as long as you used secure networks and stayed away from public Wi-Fi you were safe.

    “Public Wi-Fi is bad anyway”

    The amount of times Apple has had negative PR because of something like this is a very small number, over the years Android has had a ton of exploits all of which where exposed publicly and exploited before a patch was released mainly due the time it took Google to distribute the patch to companies like HTC and Samsung.

    In the end iOS is the most secure mobile OS in existence, that fact can’t be ignored when it comes to choosing security over customization.

  • BozzyB

    I don’t know anybody using a third party app store but I can imagine in other countries people use it. If Google is smart they don’t allow third party app stores on unrooted devices in the future.

  • shitbox fangay

    Every popular and open souce OS in this world would be no. 1 target for virus and malware idiot! So does Windows for PC. Android and pc windows are very similar, except that no one talks or bitching about Pc windows get more virus, & malware. Moron!

  • Bob Moose

    I don’t have any problems with Android-based products. In-fact, I love Android based products. I find them to be safe to use, much easier to use than Apple products and much more stable. Android is a wonderful Operating System. I love it.