Plankton Ad Library for Android com.plankton.device.android.service.AndroidMDKService Backdoor
Remote / Network Access,
Mobile Phone / Hand-held Device
Loss of Integrity
Plankton Ad Library for Android contains a flaw that is triggered when com.plankton.device.android.service.AndroidMDKService receives a .jar file that transforms the host into a bot, which effectively creates a backdoor for a remote attacker to execute arbitrary code.
The presence of this software means the host system has been compromised through the presence of the an application using the Plankton Ad Library. The only way to ensure the software, and any other malicious software (malware), is completely removed is to re-install the operating system.