Despite Google’s efforts, the Play Store is continually invaded by apps with malicious intentions. According to a study by Zscaler, 200+ Harmful Android Apps have also managed to bypass the store’s barriers between June 2023 and April 2024. These apps were installed nearly eight million times before Google removed them from its platform. Most of the compromised applications were utilities.
Also read: Necro malware hacked 11 million Android smartphones via the Play Store
What viruses have infiltrated the Play Store?
In the code of these applications, researchers spotted a series of malware. Among the most widespread viruses on the Play Store, we first find the Joker malware, a formidable Trojan horse which regularly returns to threaten Android users. First spotted in September 2019, the virus often returns to the platform to steal money from its victims by subscribing them to online services at sky-high prices. It was identified in the code of more than 38% of apps banned during the period.
The report of Zscaler also points the fingeromnipresence of adware within pinned Android apps. In fact, more than 35% of applications displayed unwanted advertisements on their victims’ smartphones. Finally, researchers found FaceStealer, a Facebook credential stealer, in nearly 15% of applications.
Let us also mention the presence of malware designed to steal personal data, such as Coper, or the Anatsa virus. This banking Trojan vise over 650 financial institution apps across Europe, US, UK and Asia. Attacks based on banking malware increased by 29% over the period.
“Despite an overall decrease in attacks on Android, financially motivated mobile threats are growing”note Zscaler.
The war continues on the Play Store
To escape Google’s controls, cybercriminals have a series of tricks at their disposal. First, they avoid including malicious code in apps before they are approved by Google. The applications actually wait to be installed on the victims’ smartphones to trigger the attack. They recover first instructions from a remote serverthen download a malicious file that installs the malware APK. This method allows apps to go unnoticed on the Google Play Store.
In its latest report, Google claims to have “prevented the publication of 2.28 million applications” dangerous in 2023. Thanks to a combination of algorithms and moderators, the platform was able to reject a mountain of fraudulent applications. In addition, 333,000 malicious developer accounts were ejected from the Play Store.
Despite the measures taken, the Play Store continues to let misleading applications through. To avoid falling into the trap set by pirates, we recommend that you always take a look at the comments before installing an unknown application. Often, reviews will indicate that the app is not working as expected, showing ads, or ruining the device’s performance. Likewise, take the time to find out about the developer offering the application.
???? To not miss any news from 01net, follow us on Google News and WhatsApp.
Source :
Zscaler
