Originally Posted by jsconyers
In all fairness, the user has to go into their security settings and uncheck a setting to allow unsigned apps. Even after that, they are prompted with a screen that shows what the app will need to access (like the permissions screen on the BlackBerry) and they have to okay it.
Why would any user install a media app that asks for permission to access SMS? No matter how secure a device is, the weak link is the user. This isn't a sign of an non-secure OS, the security flaw here is the user.
JS, you are an educated user. I wonder how many of the other users are? How many people will try and get something free? The real problem is that it is going to get worse.