Where is spyware stored-phone or card?

[coldcaption]

Someone I know is currently in the process of having their Droid (original) replaced because someone installed spyware on it. What I'm looking into right now is whether or not we'll have to wipe the card because of this. Is spyware typically stored on the phone, or the card? I would expect it to be on the phone since that's where Android applications are typically kept, but I want to be sure. Any help is appreciated, thanks!

 

[Podivin]

It could be in either, or both, places.
My advice would be to NOT back up the card (if the spyware IS stored on the card then any backup you do is likely to copy the spyware file also, in which case where you restore your data you get the spyware back), format the card (full, not quick) and start fresh.

 

[coldcaption]

Alright, thanks. I take it pictures and other media can be saved as long as the files themselves are selected and not the folders?

 

[Szadzik]

Someone I know is currently in the process of having their Droid (original) replaced because someone installed spyware on it. What I'm looking into right now is whether or not we'll have to wipe the card because of this. Is spyware typically stored on the phone, or the card? I would expect it to be on the phone since that's where Android applications are typically kept, but I want to be sure. Any help is appreciated, thanks!

Would it not be easier to use an antivirus program to get rid of the spyware instead of replacing the phone?

 

[drone46]

I was not aware that there was any spyware or viruses that infected android devices. Has anybody else heard of this?

 

[Aeolus]

So far, I'm only aware of one. Really though, as a Linux-based OS, Android is ridiculously protected considering its open nature. Unless you root, I'm fairly certain it's impossible for a virus to physically harm your phone.

Accessing the data on it, however, is another matter. The system is only as safe as the user, and that means you have to keep an eye on the permissions requested each time you install an app, or at least check them every once in a while. If you see a comment saying, "Why does it need access to _____?", then you should avoid that app unless the developer replies or has an answer to that question on their website, and you trust that developer.

Of course, you need to learn to the difference between trustworthy and untrustworthy developers, as well. I find that a website with a forum and/or decent FAQ is a good measure of a developer's trustworthiness. People don't realize it, but malicious coders are lazy people counting on the laziness in others. They rarely take the time to set up a website with a forum or write a decent FAQ. There's also the non-malicious developers with little interest in updating their apps after they make money off of them (the guy who made psx4droid comes to mind). They usually have a blog, but they go for months without answering questions (if they're answering questions, a blog is fine).

If you spot an app with a website that has a good FAQ or a forum with any regular members, though, you're probably good to install/buy the app. Tasker's Pent would be a prime example. I can't remember the last time I saw a developer so engaged.

 

[wayrad]

I can't see why anybody would replace a phone due to spyware, given that I've only heard of one or two spyware apps (and those I've heard of only because of the ridiculous stories posted by "security" app astroturfers here). Surely the thing to do would be to delete the offending app?

What makes the OP's friend think there is spyware present in the first place?