Android Malware With Over 2 Million Downloads Discovered on Google Play Store

Risk:
high
Damage:
high
Platform(s):
Android OS Apple iOS Mobile Networks and Telephones
Advisory ID:
ngCERT-2022-0082
Version:
N/A
CVE:
N/A
Published:
June 26, 2022

Summary


An Android malware that is both an adware and information-stealer has been downloaded over two million times on the Google Play Store. The malware has been masquerading as several legitimate apps, and while most have been removed, five of them are still up on the store with the possibility that some are yet to be identified.

Description & Consequence


The Google Play Store, the official Android app distribution platform, is used for delivery. The adware infections can degrade the user experience, deplete the battery, generate heat, and even cause unauthorized charges by displaying unwanted advertisements. Furthermore, the malware generally attempts to conceal itself by masquerading as something else on the host device and earns money for remote operators by forcing the victim to view or click on affiliated advertisements. The identified apps are:

  1. PIP Pic Camera Photo Editor
  2. Wild & Exotic Animal Wallpaper
  3. ZodiHoroscope
  4. PIP Camera 2022
  5. Magnifier Flashlight

Once installed, the poorly optimized apps performs the following:

  1. Recurring, unauthorized charges on the victim’s bank card.
  2. Steal login information for social media and banking websites, as well as notification information, and especially One-Time Passcodes (OTP).
  3. Make a phone to perform poorly while getting hotter than usual. Battery life will also be worse.

Solution


  1. Before downloading apps obtained through official channels, users should read app reviews and conduct additional research.
  2. Uninstall any apps that are causing your phone to perform poorly.

Reference


Revision


Related Articles