Android malware on the Google Play Store gets 2 million downloads

Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,585
Content source
https://www.bleepingcomputer.com/news/security/android-malware-on-the-google-play-store-gets-2-million-downloads/
Cybersecurity researchers have discovered adware and information-stealing malware on the Google Play Store last month, with at least five still available and having amassed over two million downloads.

Adware infections displaying unwanted advertisements that can be particularly intrusive, degrade the user experience, deplete the battery, generate heat, and even cause unauthorized charges.

This software generally tries to hide by masquerading as something else on the host device and makes money for remote operators by forcing the victim to perform views or clicks on affiliated advertisements.

However, information-stealing Trojans are far more nefarious, stealing login credentials for other sites you frequent, including your social media and online banking accounts.
Click to expand...
Infiltrating the Google Play Store

Analysts at Dr. Web antivirus report that adware apps and data-stealing Trojans were among the most prominent Android threats in May 2022.

At the top of the report are spyware apps that can steal information from other apps' notifications, primarily to snatch one-time 2FA passcodes (OTP) and take over accounts.

Among the many threats that managed to infiltrate the Google Play Store, the following five are still available:
  • PIP Pic Camera Photo Editor – 1 million downloads, malware masquerading as image-editing software, but which steals the Facebook account credentials of its users.
  • Wild & Exotic Animal Wallpaper – 500,000 downloads, an adware trojan that replaces its icon and name to 'SIM Tool Kit' and adds itself to the battery-saving exceptions list.
  • ZodiHoroscope – Fortune Finder – 500,000 downloads, malware that steal Facebook account credentials by tricking users into entering them, supposedly to disable in-app ads.
  • PIP Camera 2022 – 50,000 downloads, camera effects app that is also a Facebook account hijacker.
  • Magnifier Flashlight – 10,000 downloads, adware app that serves videos and static banner ads.
Bleeping Computer has contacted Google to inform them about the above applications and verify if the existing versions were cleaned and resubmitted or are still as dangerous as described in Dr. Web's report.

However, judging from recent user reviews, these apps are still demonstrating malicious functionality and don't deliver on their features promises.
Click to expand...
 
  • Like
  • +Reputation
  • Wow
Reactions: harlan4096, upnorth, The_King and 3 others
You must log in or register to reply here.

Similar threads

CyberTech
    • Like
    • +Reputation
Android adware apps on Google Play amass two million installs
Replies
0
Views
700
News Archive
CyberTech
CyberTech
Gandalf_The_Grey
    • Like
    • +Reputation
    • Thanks
Shady reward apps on Google Play amass 20 million downloads
Replies
2
Views
665
News Archive
Zero Knowledge
Z
Gandalf_The_Grey
    • Like
    • +Reputation
    • Wow
Trojanized Signal and Telegram apps on Google Play and Samsung Galaxy Store delivered spyware
Replies
7
Views
1,299
News Archive
cartaphilus
cartaphilus

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top