Friday, August 19, 2022
HomeCyber SecurityExtra malware-infested apps discovered within the Google Play retailer

Extra malware-infested apps discovered within the Google Play retailer

Three million Android customers might have misplaced cash and had their units contaminated by adware, after the invention that the official Google Play retailer has been distributing apps contaminated by a brand new household of malware.

French safety researcher Maxime Ingrao described final week on Twitter how he had found the brand new malware, named “Autolycos”, and the way it indicators up customers to premium providers.

The Autolycos malware, which shares similarities to the Joker adware, spies on SMS messages, contact lists, and machine info, and subscribes unsuspecting customers to costly wi-fi software protocol (WAP) providers.

Affected apps embody Humorous Digital camera by KellyTech (which has been put in over 500,000 occasions from the Google Play Retailer) and Razer Keyboard & Theme by rxcheldiolola (greater than 50,000 installs).

Different malicious apps, which have since been faraway from the Google Play Retailer, embody:

  • Vlog Star Video Editor (1 million installs)
  • Inventive 3D Launcher (1 million installs)
  • Wow Magnificence Digital camera (100,000 installs)
  • Gif Emoji Keyboard (100,000 installs)
  • Freeglow Digital camera (5,000 installs)
  • Coco Digital camera v1.1 (1,000 installs)

In keeping with Ingrao, among the malicious apps have been promoted to the general public through Fb and Instagram advertisements.

Ingrao says that Autolycos-poisoned apps have been accessible on the official Android market since June 2021, throughout which period they’ve been put in over three million occasions, however they’ve solely just lately been pulled by Google. Questions will inevitably be requested whether or not Google is doing a adequate job of checking apps which might be made accessible through its market to many tens of millions of customers.

As now we have talked about earlier than, there are steps all Android customers needs to be taking to cut back the probabilities of encountering malware. These embody:

  • Preserve your Android machine up-to-date with the newest official safety patches.
  • Activate Google Play Shield – Google’s built-in malware safety for Android, which robotically scans your machine.
  • Obtain your apps from official sources, such because the Google Play Retailer – not unofficial app shops. This wouldn’t have helped on this specific case, however as a common rule the Google Play Retailer is taken into account safer than third-party marketplaces.
  • Examine opinions of apps earlier than downloading them, though keep in mind that there have been situations the place criminals have posted bogus opinions in an try and dupe customers into trusting that an app might be thought-about protected.
  • Think twice about whether or not it is best to settle for the permissions an app requests upon set up.
  • Take into account operating an anti-virus program from a professional safety agency in your Android machine.

Editor’s Observe: The opinions expressed on this visitor creator article are solely these of the contributor, and don’t essentially mirror these of Tripwire, Inc.



Please enter your comment!
Please enter your name here

Most Popular