Children’s Apps Found To Be Filled With Porn Malware

Rengar

Level 17
Thread author
Verified
Top Poster
Well-known
Jan 6, 2017
835
Malware displaying pornographic ads discovered in game apps on Google Play.
Be careful what you download, especially if you’re planning to hand it off to an impressionable young user. A new finding of content in the Google Play Store includes around 60 children’s apps that are filled with malware. This malware, though, has a very specific goal, namely putting porn advertisements in front of users.

The apps–which have now been removed by Google–were predominantly Disney-themed apps and add-ons for Minecraft’s pocket edition, all of which are geared towards younger users. Called AdultSwine malware and discovered by security experts at Checkpoint, the harmful code worked in one of three different ways: it displayed pornographic ads for adult websites, posed as security fixes that convinced users to download and install them, or caused users to sign up for at-cost premium services.


Malware populated children’s apps with porn adverts.

Click-bait
Like another recently discovered series of compromised Google Chrome extensions, AdultSwine was harmful enough on the surface but had the deeper underlying ability to steal things like login credentials from the users’ devices. Some of the comments from infected users also reported that it displayed full-size popups that falsely claimed their devices had been infected with other types of viruses. The screen offered users the chance to remove the virus, but clicking that button redirected to an app for sale in the Google Play Store to “clean” the device. Others were met with offers for free iPhones for taking a short survey and other similar tactics.

Better vetting
News like this begs the question that if Google can expend so much manpower removing threats that other security experts were kind enough to report to them, wouldn’t it be better for everyone if they spent that same energy actually preventing these threats through better vetting? In the meantime, parents need to remember that most of the discovered malware is “after the fact,” and that it will be up to them to ensure their kids aren’t playing with devices while unattended.
 

upnorth

Level 68
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
This developer deserves a special place in hell.

UihSeWu5_o.gif
 
D

Deleted member 65228

This developer deserves a special place in hell.
The other worrying thing is that Google Play tends to be considered as a "safe environment", except these sorts of events prove otherwise... Not one application, not two, not three... Five? Nope. 60.

I thought submissions for Google Play were manually approved? This really is not good.
 

Faybert

Level 24
Verified
Top Poster
Well-known
Jan 8, 2017
1,320
Once a Google director talked about their Google Play review system: "The reason why Google’s app review team is able to process app submissions so quickly is because the system also includes an automated element. Before app reviewers are presented with the applications, Google uses software to pre-analyze the app for things like viruses and malware as well as other content violations. For example, its image analysis systems are capable of automatically detecting apps that include sexual content, as well as those that infringe on other applications’ copyright."

In theory, in practice it does not detect anything (n)
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top