More than 50 applications on Google's Android Market have been discovered to be infected with malware called "DroidDream" which can compromise personal data by taking over the user's device, and have been suspended from the store. The apps, according to analysts, may have been downloaded up to 200,000 times before they were found.
The apps were not newly developed ones. The malicious apps were just a bunch of existing applications that had been repackaged to include the virus code.
According to “Android Police” , the malware sends sensitive data including product ID, model, partner (provider), language, country, and user ID. The most dangerous aspect of the rootkit malware is its ability to download codes.
Those who are on version 2.3+ not vulnerable to the exploits DroidDream uses. They can simply uninstall the offending application(s).
Resources :