Cybersecurity researchers at Dr. Web found half a dozen mobile apps lurking in Google’s Play Store that are actually distributing information thieves (opens in new tab)adware and other forms of malware via Android (opens in new tab) applications that between them have more than two million downloads.
Researchers found five malicious apps, including PIP Pic Camera Photo Editor, a malicious app with over a million downloads pretending to be image editing software. In reality, it steals people’s Facebook credentials.
Other malicious apps include Wild & Exotic Animal Wallpaper, an adware app that replaces its name to SIM Tool Kit as soon as it is downloaded (500,000 downloads), ZodiHoroscope – Fortune Finder, another Facebook credential stealing app (500,000 downloads), PIP Camera 2022, pretending to be a camera effects app (Facebook infostealer with 50,000 downloads), and Magnifier Flashlight, adware with 10,000 downloads.
Sneaking into legit stores
Until now, these apps were still available for download from the Play Store and judging by the comments posted on the app repository, people are not happy as the apps are obviously fraudulent.
In addition to these five apps, the researchers found four more that are no longer available to the general public, including a racing game, an app that offers deleted photo recovery, a fake state compensation app for the Russian-speaking community, and an app that promises free access to Only Fans.
While they may have been removed from the Play Store, people who downloaded them in the past are still at risk, until they remove them from their endpoints, using antivirus software or other malware. (opens in new tab)– removal of solutions.
Security professionals have always talked about how people should only download apps from verified sources, but the App Store or Play Store is not immune to cyberattacks. Users should always be aware of their devices, keeping them updated, having an antivirus solution installed, and monitoring incoming and outgoing traffic with firewalls.
Through: BleepingComputer (opens in new tab)