Malicious Android apps totaling millions of downloads discovered on Google Play

[Shawn Knight]

Why it matters: Anti-malware specialist Doctor Web has identified malicious software that was recently available on Google Play, masquerading as legitimate games and apps. They have all since been removed from the store but if you downloaded any of them, be sure to remove them ASAP.

Four games in particular – Agent Shooter, Rainbow Stretch, Rubber Punch 3D, and Super Skibydi Killer – stood out for their use of a trojan designed to exploit intrusive ads. Some of the games had more than 500,000+ downloads each, and the authors went to great lengths to keep their nefarious nature hidden from users.

As Dr. Web notes, the games would replace their icons on the home screen with transparent versions and leave their name field blank to avoid detection. Some also used a Chrome web browser icon, and would launch trojans that would run in the background when opened to generate fraudulent ad revenue.

Such tactics can be effective, especially when the malicious program stops working, as unsuspecting users will just assume their browser has crashed and relaunch the fake app.

Dr. Web also unearthed several other apps that fell into the Android.FakeApp category. These were mostly financial-based apps focused on activities like stock trading and accounting that tricked users into loading fraudulent sites and attempted to convince them to become "investors." Examples in this category included MoneyMentor, FinancialFusion, and Financial Vault.

Others disguised as legitimate games, like Jungle Jewels, Eternal Maze, Fire Fruits, Enchanged Elixir, Cowboy's Frontier, and Stellar Secrets, were mostly fronts for online casino websites, and in violation of Google Play policies.

Yet another category of trojan apps, Android.Joker, subscribes victims to paid services and can impersonate any number of legitimate app. One example, called Beauty Wallpaper HD, pretended to be an image collection app while another, dubbed Love Emoji Messenger, billed itself as a free chat app.

Dr. Web's report goes to show that even official app stores like Google Play are not immune to bad actors.

Image credit: Amarnath Radhakrishnan

Permalink to story.

https://www.techspot.com/news/100670-malicious-android-apps-totaling-millions-downloads-discovered-google.html

 

[TheBigT42]

This is why we can't have nice things

 

[texasrattler]

The real problem or question is does Google know about them? If so, why were they allowed on GP to begin with?
Is Google getting any kind of kick back? I thought Google prevented this type of stuff from happening years ago?
Now in 2023, we still see the same crap going on from a decade ago. Some things really don't change.

 

[Mr Majestyk]

I haven't downloaded a game in 4 years on Android. I don't trust anyone.

 

[sdms96825]

Who, exactly, are the numerous morons downloading these apps?

 

[trgz]

Who, exactly, are the numerous morons downloading these apps?

These are the real zombies that are hidden, in plain sight, around us.

 

[WhoCaresAnymore]

Apple is over-priced, but with the locked down ecosystem, I haven't had even a single instance of something like this. I also own Android stuff, but only Samsung. I do NOT use anything but my iPad for games, and they are for old farts like me. Hidden Object games by bigger studios.

 

[PEnnn]

Just another day in Google's Android world.

Does Google really give a rat's orifice about those daily events that have been happening for a decade now and even longer?