{"id":8756,"date":"2015-04-10T13:00:45","date_gmt":"2015-04-10T20:00:45","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=8756"},"modified":"2015-04-10T12:58:35","modified_gmt":"2015-04-10T19:58:35","slug":"android-installer-hijacking-scanner-accept-no-substitutes","status":"publish","type":"post","link":"https:\/\/www2.paloaltonetworks.com\/blog\/2015\/04\/android-installer-hijacking-scanner-accept-no-substitutes\/","title":{"rendered":"Android Installer Hijacking Scanner: Accept No Substitutes!"},"content":{"rendered":"

On March 24, we released<\/a> the details of a vulnerability impacting millions of Android devices that allows an attacker to modify applications during the installation process. At that time we also released a scanner application<\/a> that allowed users to determine whether their phone or tablet contained the vulnerability.<\/p>\n

As with many newsworthy events, a few enterprising attackers have capitalized on this vulnerability and have released imposter scanner applications that infect the devices of unsuspecting users with malware<\/a>. The activity does not appear to be widespread, but we remind our readers that the only legitimate places to retrieve the scanner are:<\/p>\n