Researchers at SophosLabs have come across yet more samples of Android malware exploiting the so-called "Master Key" vulnerability.
These samples are different from the ones announced about two weeks ago by our comrades-in-arms over at Symantec.
So, although this vulnerability is not being widely used yet, there does seem to be more than just a passing interest from the cybercrooks in exploiting it.
As we discussed last month, the exploit doesn't actually crack any cryptographic keys, despite its name.
The "MasterKey" hole
The way it works is annoyingly simple.
Android apps are delivered in ZIP-format files with the extension APK (Android Package).