Update 2: Google has officially acknowledged Droid Dream and is taking further steps to correct it.
21 popular free apps from the market, injected root exploits into them and republished." The really scary part?"50k-200k downloads combined in 4 days." Lompolo explains the situation quite well: Link to publishers apps here.I just randomly stumbled into one of the apps, recognized it and noticed that the publisher wasn't who it was supposed to be.Super Guitar Solo for example is originally Guitar Solo Lite.I downloaded two of the apps and extracted the APK's, they both contain what seems to be the "rageagainstthecage" root exploit - binary contains string "CVE-2010-EASY Android local root exploit (C) 2010 by 743C".
Don't know what the apps actually do, but can't be good.I appreciate being able to publish an update to an app and the update going live instantly, but this is a bit scary.Some sort of moderation, or at least quicker reaction to malware complaints would be nice.EDIT: After some dexing and jaxing, the apps seem to be at least posting the IMEI and IMSI codes to which seems to be located in Fremont, CA.I asked our resident hacker to take a look at the code himself, and he's verified it does indeed root the user's device via rageagainstthecage or exploid.But that's just the tip of the iceberg: it does more than just yank IMEI and IMSI.