Author Topic: Android malware  (Read 2010 times)

0 Members and 1 Guest are viewing this topic.

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Android malware
« on: Thursday, 14 July, 2022 @ 14:43:01 »
Quote
New Android malware on Google Play installed 3 million times

A new Android malware family on the Google Play Store that secretly subscribes users to premium services was downloaded over 3,000,000 times.

The malware, named 'Autolycos,' was discovered by Evina's security researcher Maxime Ingrao to be in at least eight Android applications, two of which are still available on the Google Play Store at the time of this writing.

The two apps still available are named 'Funny Camera' by KellyTech, which has over 500,000 installations, and 'Razer Keyboard & Theme' by rxcheldiolola, which counts over 50,000 installs on the Play Store.

The remaining six applications have been removed from the Google Play Store, but those who still have them installed risk being charged with costly subscriptions by the malware's activities.

    Vlog Star Video Editor (com.vlog.star.video.editor) – 1 million downloads
    Creative 3D Launcher (app.launcher.creative3d) – 1 million downloads
    Wow Beauty Camera (com.wowbeauty.camera) – 100,000 downloads
    Gif Emoji Keyboard (com.gif.emoji.keyboard) – 100,000 downloads
    Freeglow Camera 1.0.0 (com.glow.camera.open) – 5,000 downloads
    Coco Camera v1.1 (com.toomore.cool.camera) –1,000 downloads

During a discussion with Ingrao, the researcher told BleepingComputer that he discovered the apps in June 2021 and reported his findings to Google at the time.

Although Google acknowledged receiving the report, it took the company six months to remove the set of six, while two malicious apps remain on the Play Store to this day.
https://www.bleepingcomputer.com/news/security/new-android-malware-on-google-play-installed-3-million-times/

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Android malware
« Reply #1 on: Sunday, 31 July, 2022 @ 14:29:21 »
Quote
Facebook ads push Android adware with 7 million installs on Google Play

Several adware apps promoted aggressively on Facebook as system cleaners and optimizers for Android devices are counting millions of installations on Google Play store.

The apps lack all of the promised functionality and push advertisements while trying to last as long as possible on the device.

To evade deletion, the apps hide on the victim's device by constantly changing icons and names, masquerading as Settings or the Play Store itself.

As McAfee comments in the report, users are convinced to trust the adware apps because they see a Play Store link on Facebook, leaving little margin for doubt.

This has resulted in unusually high download numbers for the particular type of applications, as shown in the list below:

    Junk Cleaner, cn.junk.clean.plp, 1M+ downloads
    EasyCleaner, com.easy.clean.ipz, 100K+ downloads
    Power Doctor, com.power.doctor.mnb, 500K+ downloads
    Super Clean, com.super.clean.zaz, 500K+ downloads
    Full Clean -Clean Cache, org.stemp.fll.clean, 1M+ downloads
    Fingertip Cleaner, com.fingertip.clean.cvb, 500K+ downloads
    Quick Cleaner, org.qck.cle.oyo, 1M+ downloads
    Keep Clean, org.clean.sys.lunch, 1M+ downloads
    Windy Clean, in.phone.clean.www, 500K+ downloads
    Carpet Clean, og.crp.cln.zda, 100K+ downloads
    Cool Clean, syn.clean.cool.zbc, 500K+ downloads
    Strong Clean, in.memory.sys.clean, 500K+ downloads
    Meteor Clean, org.ssl.wind.clean, 100K+ downloads
https://www.bleepingcomputer.com/news/security/facebook-ads-push-android-adware-with-7-million-installs-on-google-play/