谷歌Android Market目前還沒(méi)有在中國(guó)開(kāi)業(yè)，于是不少中國(guó)運(yùn)營(yíng)商、手機(jī)制造商和第三方公司就爭(zhēng)先打造了自己的“Android Market”版應(yīng)用商店。雖然這一結(jié)果確實(shí)給大量的中國(guó)用戶帶來(lái)了更多選擇，但也存在不少安全隱患的問(wèn)題。

[[18992]]

Android-china

Android平臺(tái)在中國(guó)市場(chǎng)擁有巨大的發(fā)展?jié)摿?，如果這一平臺(tái)能夠綁定Android Market出擊中國(guó)市場(chǎng)，那么一定能夠造福許多希望進(jìn)軍中國(guó)的開(kāi)發(fā)商。但在此之前，Android平臺(tái)還面臨許多需要克服的問(wèn)題。據(jù)游戲邦了解，Lookout Mobile Security公司最近針對(duì)中國(guó)的Andrid應(yīng)用市場(chǎng)進(jìn)行了調(diào)查，發(fā)現(xiàn)其中的兩大應(yīng)用商店雖然支持合法的漢化版應(yīng)用，但同時(shí)也提供盜版和重新包裝的產(chǎn)品。

Android-china

Android-china

調(diào)查發(fā)現(xiàn)，在這些應(yīng)用商店中，61%的產(chǎn)品是漢化版的特殊手機(jī)應(yīng)用，有11%的應(yīng)用存在重新包裝的痕跡，或者是由非原創(chuàng)開(kāi)發(fā)商發(fā)布的產(chǎn)品。

Lookout聯(lián)合創(chuàng)始人Kevin Mahaffey指出，只要有人從谷歌Andorid Market下載了一款應(yīng)用，產(chǎn)品就已存在被重新包裝的可能。這些第三方開(kāi)發(fā)者有可能更改原始應(yīng)用的代碼，然后將其投放到本土Android應(yīng)用商店中。他們可能在原始應(yīng)用中植入惡意軟件，也有可能嵌入自己的廣告代碼，然后這些廣告收益就流向了這些不法開(kāi)發(fā)者的手中，原始開(kāi)發(fā)商卻無(wú)法分得一杯羹。

游戲獲悉，在這些重新包裝的產(chǎn)品中，有些產(chǎn)品向用戶彈出請(qǐng)求對(duì)話框的頻率比原始應(yīng)用更高（游戲邦注：Andorid應(yīng)用一般都會(huì)向手機(jī)用戶發(fā)出相關(guān)授權(quán)請(qǐng)求，比如說(shuō)獲取用戶的聯(lián)系人列表等信息），被安插的惡意軟件的應(yīng)用更是如此。

iOS-china-apps

除此之外，中國(guó)本土的iOS應(yīng)用商店也存在不少盜版問(wèn)題，這一市場(chǎng)上85%的應(yīng)用都屬于這種類型。手機(jī)用戶經(jīng)常會(huì)通過(guò)越獄，或者繞過(guò)蘋果應(yīng)用審核程序，從這些第三方iOS應(yīng)用商店中下載內(nèi)容。調(diào)查發(fā)現(xiàn)，在其中的一個(gè)第三方應(yīng)用商店中，約有8%（或者說(shuō)2000款應(yīng)用）的產(chǎn)品盜版了蘋果App Store的同款應(yīng)用。

據(jù)游戲邦了解，Lookout還發(fā)現(xiàn)約三分之一（34%）的App Store免費(fèi)應(yīng)用，以及28%的Android Market免費(fèi)產(chǎn)品，可以獲取用戶所在地理位置。還有7.5%的Android免費(fèi)應(yīng)用和11%的蘋果同類產(chǎn)品可以獲取用戶的聯(lián)系人信息。

與此同時(shí)，該調(diào)查還指出在過(guò)去6個(gè)月中，可獲取用戶地理位置及聯(lián)系人信息的手機(jī)應(yīng)用數(shù)量已經(jīng)呈現(xiàn)下降的趨勢(shì)。這一現(xiàn)象有可能與開(kāi)發(fā)商普遍提高了保護(hù)用戶隱私的意識(shí)有關(guān)。

Lookout的調(diào)查還發(fā)現(xiàn)了一款名為HongTouTou的木馬應(yīng)用程序（或稱為ADRD木馬），它在漢化版的重新包裝應(yīng)用中最為普遍，該木馬目前存在于14種重新包裝游戲和墻紙應(yīng)用中。（本文為游戲邦/gamerboom.com編譯，轉(zhuǎn)載請(qǐng)注明來(lái)源：游戲邦）

Google hasn’t opened an Android Market in China, so a number of Chinese carriers, phone makers, and independent companies have opened their own versions of the Android Market there. The result is a lot of app choices for Chinese users, but there are also more security risks.

Android has a lot of potential in the Chinese market. If the marketplace for apps can come together, then China could become a land of huge opportunities for app developers. But there are a lot of problems to fix still. That’s one of the conclusions I draw from the latest data from the App Genome Project, a massive study of apps undertaken by Lookout Mobile Security.

Lookout studied two alternative Android markets for Chinese users. While these markets serve a legitimate need for localized Chinese language apps, they also hosted pirated and repackaged apps.

Some 61 percent of the apps in these stores were unique, most likely because they were converted into the Chinese language. About 11 percent of the apps available on the markets were repackaged and likely submitted by someone other than the original developer.

Kevin Mahaffey, co-founder of Lookout, said in an interview that repackaging happens when someone downloads an app from Google’s Android Market. They can then inject their own code into the app and then upload it to an alternative Android Market. Sometimes they inject malware. Sometimes they inject their own ad code so that advertising dollars flow not to the original app maker but to the person repackaged the app.

Of the repackaged apps, a quarter request more permissions than the original app. (On Google Android phones, users are often prompted to give their permission for an app to access certain functions within the phone, such as accessing their contact lists). That’s ominous, considering malware often triggers permission requests.

Alternative app stores for Apple’s iOS (iPhone, iPad and iPod Touch) also exist. Lookout found that one of the markets existed mainly for pirates, as 85 percent of its apps were pirated. Users who “jail break” their phones, or circumvent Apple’s security software, can download pirated apps from these alternative stores. Roughly 8 percent of the paid apps in the Apple App Store, or nearly 20,000 apps, were found in pirated form on one alternative iOS market. That’s got to be depressing for app developers.

Lookout also found that about a third of the free apps in both the Apple App Store (34 percent) and the Android Market (28 percent) have the ability to access a user’s location. About 7.5 percent of free apps in the Android Market and 11 percent of free apps in the Apple App Store can access contact information.

That’s not alarming by itself, but it’s a potential red flag for privacy violations. Lookout found that there was some good news here, as the number of apps having access to location or contacts has fallen in the past six months. That may be due to more developer sophistication and a heightened awareness of privacy concerns after a big scare on the Android phones last summer.

Speaking of scares, Lookout identified a new trojan, HongTouTou, or the ADRD trojan, in popular repackaged apps targeted at Chinese-speaking users. The malware has 14 different versions so far repackaged in game and wallpaper apps.（source:venturebeat）

【編輯推薦】

1. 我國(guó)下一代超級(jí)計(jì)算機(jī)2010年完成 將用八核龍芯
2. 我國(guó)下一代超級(jí)計(jì)算機(jī)2010年完成 將用八核龍芯
3. 我國(guó)下一代超級(jí)計(jì)算機(jī)2010年完成 將用八核龍芯