Bad news for Android antivirus users

Your expectations are probably not being met:

Android users expecting Windows levels of performance from Android-specific antivirus packages are likely to be disappointed because only Google can automatically delete dodgy apps on Android devices, say malware experts.

Anti-malware bods agree that antivirus programs on Android can’t remove viruses automatically, meaning that the process needs to be carried out manually by the user in each and every case.

"Android antimalware applications can block URLs, scan downloads and identify malware that the user may have installed, but they cannot remove malicious applications that are installed by the user," explained Simon Edwards, technical director at Dennis Technology Labs, an experienced antivirus tester and chairman of the Anti-Malware Testing Standards Organization.

"They have to alert the user and hope that the user is able to uninstall them manually, using the usual Android uninstall routine."

It seems that this isn't an oversight, but rather an architectural decision by Google.  An unfortunate one given the massive Android botnets that are wreaking havoc.

We invited Google to explain the design rationale for this treatment of malicious apps on Android devices but are yet to hear back from them.

Given the very poor screening for malware in Google Play, this seems rather unfortunate.  My recommendation is to be very judicious in which Android apps you install.