Cybersecurity researchers at Trend Micro and McAfee have separately published reports to alert users about a new set of fake and malware-infected Android applications on the Google Play Store. These malicious apps can carry out billing fraud by hijacking SMS message notifications.
According to researchers, users in the Arabian Peninsula and Southwest Asia are the prime targets in this campaign and these apps had garnered nearly 750,000 downloads before being removed from the Play Store.
Versatile Array of Fraudulent Apps Found
McAfee researchers stated that a wide range of apps such as photo editors, puzzles, wallpapers, keyboard skins, and similar other camera-related applications was plagued with malware.
Infected Apps on Google Play Store
“These fraudulent apps hijack SMS message notifications and then make unauthorized purchases. While apps go through a review process to ensure that they are legitimate, these fraudulent apps made their way into the store by submitting a clean version of the app for review and then introducing the malicious code via updates to the app later” McAfee Mobile Research team noted in their blog post.
Fake Apps Embedded with Joker Malware
Research revealed that the fake applications were infected with Joker aka Bread malware that repeatedly bypassed Google Play defenses for the past four years. That’s why Google had to remove over 1,700 apps from the Play Store earlier in 2020.
McAfee suspects another threat un ..
Support the originator by clicking the read the rest link below.
