Millions of Android devices infected with wallet-draining malware
Date:
Wed, 27 Jul 2022 21:02:44 +0000
Description:
That Android wallpaper app is actually signing you up for premium services
and annoying ads.
FULL STORY ======================================================================
Researchers have discovered another batch of seemingly innocent Android apps that are actually designed to push malware onto the endpoints , and rake up expenses to the unsuspecting victims.
The latest batch included wallpaper apps, keyboards, photo editors, video editors, and an occasional cache cleaner or system maintenance apps, was discovered by the Dr. Web antivirus team, and have more than 10 million downloads between them.
Overall, 28 apps were found on the Google Play Store, having somehow managed to bypass Googles strict security policies. Android apps hacked
As for the damages, the practice is more or less the same. Once installed, most apps will try to hide, changing their appearance in the app drawer to that of a system app. That way, they hope the users would be discouraged from uninstalling them. Then, the apps would push ads, and try to sign up the victim to various premium services, to rake up additional expenses.
None of this would have been possible if users wouldnt give the apps the necessary permissions. Even though the apps are simple in design (and
actually do what theyre advertised to do), they often ask the users for advanced permissions, such as the permission to be excluded from the battery saver feature, so that they can remain operational in the background even
when terminated by the user - which itself is a major red flag. Read more
This Android malware is so dangerous, even Google is worried
Beware - another dangerous Android malware has had millions of downloads
from the Google Play Store
Clean your devices with the best Android antivirus solutions around
Most of the apps have already been removed from the Play Store, but three remain. Still, even if all of the apps were removed, they have still been downloaded millions of times, and until all victims remove them from their devices, theyll continue to be a threat.
With malicious apps getting good at hiding in plain sight, downloading exclusively from known sources is no longer the only advice. Users should
also read through the reviews, as they are a good indicator of the apps legitimacy. Also, make sure to check there are plenty of reviews, as threat actors can sometimes spoof some of them. If an app only has a handful of reviews, it's best to stay away.
Here is the full list of malicious apps discovered by the researchers: Photo Editor: Beauty Filter (gb.artfilter.tenvarnist) Photo Editor: Retouch &
Cutout (de.nineergysh.quickarttwo) Photo Editor: Art Filters (gb.painnt.moonlightingnine) Photo Editor - Design Maker (gb.twentynine.redaktoridea) Photo Editor & Background Eraser (de.photoground.twentysixshot) Photo & Exif Editor (de.xnano.photoexifeditornine) Photo Editor - Filters Effects (de.hitopgop.sixtyeightgx) Photo Filters & Effects (de.sixtyonecollice.cameraroll) Photo Editor : Blur Image (de.instgang.fiftyggfife) Photo Editor : Cut, Paste (de.fiftyninecamera.rollredactor) Emoji Keyboard: Stickers & GIF (gb.crazykey.sevenboard) Neon Theme Keyboard (com.neonthemekeyboard.app) Neon Theme - Android Keyboard (com.androidneonkeyboard.app) Cashe Cleaner (com.cachecleanereasytool.app) Fancy Charging (com.fancyanimatedbattery.app) FastCleaner: Cashe Cleaner (com.fastcleanercashecleaner.app) Call Skins - Caller Themes (com.rockskinthemes.app) Funny Caller (com.funnycallercustomtheme.app) CallMe Phone Themes (com.callercallwallpaper.app) InCall: Contact Background (com.mycallcustomcallscrean.app) MyCall - Call Personalization (com.mycallcallpersonalization.app) Caller Theme (com.caller.theme.slow) Caller Theme (com.callertheme.firstref) Funny Wallpapers - Live Screen (com.funnywallpapaerslive.app) 4K Wallpapers Auto Changer (de.andromo.ssfiftylivesixcc) NewScrean: 4D Wallpapers (com.newscrean4dwallpapers.app) Stock Wallpapers & Backgrounds (de.stockeighty.onewallpapers) Notes - reminders and lists (com.notesreminderslists.app) Stay safe by deploying state of the art firewalls today
Via: BleepingComputer
======================================================================
Link to news story:
https://www.techradar.com/news/millions-of-android-devices-infected-with-walle t-draining-malware/
--- Mystic BBS v1.12 A47 (Linux/64)
* Origin: tqwNet Technology News (1337:1/100)