Avast mobile is reporting an open source project, TextSecure, as a trojan. The author, Moxie Marlinspike, has advised said report is a false positive (See https://twitter.com/moxie/status/482968149491335169, for example).

Hi,

I notified our viruslab. I’d expect an answer tomorrow

Filip

Thanks! I use this app more than any on my phone, so having to approve it every 15 minutes is driving me up a wall, lol.

You can actually add it to ignore list if you go to AMS->Virus Scanner->Log (I think), when you tap on the infected app/file, there should be an ignore option which adds it to a permanent ignore list.

Filip

Hello,
thank you for notice. False positive will be fixed.
Sorry for any inconvenience.

Milos

Fixed

Thank you!

A quick question for anybody: How do I unignore TextSecure?

At the same place as you ignored it, there should be a button at the top right (or in the menu depending on your device) leading to the list of ignored files.

Filip

You mention on twitter that your manual verification in fact found some malicious code, yet you stop alarming people about TextSecure. Can you shed some light on to why? Is there a threat now or not?

Hi,

actually it was a kind of a misunderstanding. The detection itself catches malware, but it was also catching TextSecure. So TextSecure was indeed a false positive, but the detection was changed a bit and wasn’t disabled so the detection itself is now correct as well. Those two things got mixed up together somehow during the communication between teams. So basically both statements are correct

Filip