To ALL mobile device users utilizing the Android Marketplace:

On December 15, 2009 leading mobile banking provider MShift notified Google of a potentially unsafe application in the Android Marketplace.  It is believed that fraudsters deployed fraudulent mobile banking applications to the Android Marketplace, using a phishing technique to attempt to gain access to mobile banking user’s financial information.  This potential phishing threat is impacting over 50 financial institutions worldwide.  These applications were published by the developer “09Droid.”  Google has since removed these specific applications from the Android Marketplace.

MShift is strongly urging users on the Android platform who have downloaded applications from this developer in the first two weeks of December to take the following actions:

1. Change their log in credentials (i.e. password) via approved methods for their financial institution outside of the mobile device.
    
2. Immediately remove the application from their mobile device.
    
3. Take their mobile device to their service provider to have to phone evaluated by the technical team to ensure the application is completely removed and has not compromised any other apps or records within the phone.
    
4. Be aware that these potentially threatening applications remain hosted on the Android Lib website, and it is possible for future threats to be introduced into the Android Marketplace.

For these reasons, MShift recommends that all mobile banking users utilize their financial institutions secure browser based solution rather than a downloaded application.  To clarify:  The browser based (go.firstcommunity.com) Mobile Banking Solution provided by MShift remains fully secure.