![\"\"](\"http:\/\/webrootblog.files.wordpress.com\/2012\/08\/pic1.png\" "\\"pic1\\"")
<\/a>London Olympic Widget with shortcuts added by aggressive advertisement SDK<\/p><\/div>\n
Recently Webroot posted a blog about an app called \u201cLondon Olympics Widget\u201d which was found in a third party market that may need further clarification.\u00a0 This app is what we consider a Potentially Unwanted Application (PUA).\u00a0 PUAs are apps are not considered to be good, nor are they considered malware either.\u00a0 They are apps that walk a thin line and thus are in a grey area.\u00a0 The app in question was classified as a PUA because the of the advertisement SDK add-ons it contains.\u00a0 There are a lot of free apps out there that contain these advertisement SDK add-ons in order to create revenue, and that’s okay.\u00a0 It’s when these advertisement SDK add-ons are overly aggressive and display behaviors such as creating ad related home screen icons and bookmarks, accessing the contact list, and displaying ads in\u00a0your notification bar that we call these PUAs.\u00a0 We detect these annoying apps in order to inform the user of its presence.\u00a0 Google has recently taken the same stance against these aggressive advertisements and has updated their Ad Policies to warn developers that this type of aggressive advertising will no longer be allowed in the market: Google Play Developer Program Policies<\/p>\n
In the case of \u201cLondon Olympics Widget\u201d, it is a simple app that displays what events are going on in the Olympics on which days.\u00a0 Nothing wrong with that at all.\u00a0 The reason we have classified this as a Potentially Unwanted Application is because it is using the Olympics to draw people into installing their apps so they can make money on multiple aggressive advertisement SDK add-ons.\u00a0 It is the aggressive advertisement SDK add-ons that are requesting permissions to read contacts, look up device ids, and read SMS messages. Why do they want to read your SMS, collect your contacts and blast you with ads?\u00a0 Probably not to make your mobile experience better.\u00a0 Permissions are a scary thing, but just because an app has a permission to do something doesn’t necessarily mean it’s malicious.\u00a0 It’s the code within the app that uses these permissions that makes the determination of good or bad.\u00a0 Can \u201cLondon Olympics Widget\u201d read your contacts and read your SMS?\u00a0 Yes, but that doesn’t mean they are using the data collected in a malicious way.\u00a0 They are using the data to for advertisement reasons which isn’t considered blatantly malicious, but is considered something you may not want on your device which is why we detect it as a PUA.<\/p>\n
As always, make sure you install apps from safe markets, and if it has more permissions than what you think it should, be cautious.\u00a0 Scanning with Webroot SecureAnywhere Mobile will detect PUAs and malware to make sure users stay ad annoyance free, and safe while using a mobile device.<\/p>\n