A selection of applications written and uploaded by an Android Marketplace user/developer have been found to contain malicious code that attempts to compromise banking information stored on the device in order to commit bank/credit card fraud.
For its part, First Tech Credit Union has released the following statement:
“We recently learned that a fraudster developed a rogue Android Smartphone app. It creates a shell of mobile banking apps that tries to gain access to a consumerâ€™s financial information.
Droid09 launched this phishing attack from the Android Marketplace and itâ€™s since been removed. Itâ€™s called phishing because scammers go fishing for information about you or your financial account that may be used for identity theft.
Please note that this attack didnâ€™t target First Tech accounts. Accessing your First Tech account from your phoneâ€™s web browser is completely secure.
If you did download the Droid09 app, please remove it from your phone and take it to your mobile provider to ensure itâ€™s completely removed.
As a reminder, we donâ€™t currently have an app for the Android phone.”