"DroidDream Autopsy: Anatomy of an Android Malware Attack":

DroidDream is a powerful zombie agent that can silently install any applications and execute code with root privileges at will. According to Lookout, DroidDream is also the first piece of Android malware that uses an exploit to gain root permissions and assume virtually limitless control of the infected smartphone.

The elephant in the room, though, is the fact that DroidDream exploits vulnerabilities that have already been identified and patched, but that 99 percent of Android users are still exposed because their smartphone has not yet been graced with the update to Gingerbread.