In order to demonstrate how malicious content could
be spread and used to extract sensitive information, we
present a simple malicious application for the Android
platform. We focus on the permission based security
model implemented by the Android since one of the key
security factors is the user himself. Since the Android is
an open platform, which enforces security by sandboxing
applications, it provides the users with the opportunity to
install applications from various untrusted sources.
Therefore, fooling a user into installing malicious content
is an important attack strategy to consider.