HQ/EMEAFind out how we can help your business
Four malicious Android applications are currently downloadable from the Google Play Store. According to researchers, these apps redirect Android users to websites that could steal information or generate pay-per-click revenue for the app developers.
Some of the landing pages from the Android apps offered victims to download fake updates or security tools, to deceive the users into manually installing hostile files to their devices.
The malicious Android applications are currently available on the Play Store under a developer account dubbed “Mobile apps Group” and amassed millions of downloads.
A separate researcher noted that the same developer confirmed that, in the past, it distributed adware on Google Play. However, it was permitted to continue publishing applications after releasing cleaned versions.
Users downloaded one of the four malicious Android applications more than a million times.
Researchers enumerated these four malicious Android apps, and users are guided not to download the tools called Bluetooth Auto Connect (1,000,000+ installs), Bluetooth App sender (50,000+ installs), Driver: Bluetooth, Wi-Fi, USB (10,000+ installs), and Mobile transfer: smart switch (1000+ installs).
These apps received numerous negative reviews on Google Play, and many users commented about intrusive ads that open automatically in new browser tabs. Furthermore, the researchers noticed that the apps have a 72-hour delay before showing their first ad. Subsequently, the interval of the following ads will shorten to two hours, meaning similar phishing sites or adware will pop up every couple of hours.
The researchers also revealed that the installed apps open new browser tabs even when the device is inactive. Hence, the users will automatically see these ads or phishing websites when they use their devices again.
Cybersecurity experts noted that users should avoid installing apps from unofficial Android stores to lessen the chances of getting adware. Users should also read user reviews before downloading any app. It is also effective to monitor the battery consumption and the network data activity to help determine if a device is operating suspicious software in the background.
As of now, if a user has one of the earlier-mentioned apps, experts recommend uninstalling it and running a full system scan via Play Protect to obliterate its functions. Lastly, keeping Google Play Protect turned on is an effective way to keep the threats at bay.
