Researchers from cyber-security company McAfee have identified and advised Android Users to Delete these eight new malware-infected apps that have made their way to the Google Play Store.
According to the report, these apps have been downloaded over 700,000 times
The list includes:
— d37i64jgpubcy4.cloudfront.net
— d1ag96m0hzoks5.cloudfront.net
— dospxvsfnk8s8.cloudfront.net
— d45wejayb5ly8.cloudfront.net
— d3u41fvcv6mjph.cloudfront.net
— d3puvb2n8wcn2r.cloudfront.net
— d8fkjd2z9mouq.cloudfront.net
— d22g8hm4svq46j.cloudfront.net
— d3i3wvt6f8lwyr.cloudfront.net
— d1w5drh895wnkz.cloudfront.net
Google has a thorough process in place to ensure that malicious apps don’t sneak into the Play Store. To bypass this, the apps bypass checks by posing as photo editors, wallpapers, puzzles, keyboard skins, and other camera-related apps. The apps also submit a clean version of the app for review and then introduce the malicious code via updates to the app later.
The malware embedded in these fraudulent apps hijacks SMS message notifications and then makes unauthorized purchases. The report also says that the malware also steals other details such as carrier, phone number, SMS message, IP address, country, network status along auto-renewing subscriptions.
“…it’s important to pay attention to apps that request SMS-related permissions and Notification Listener permissions. Simply put, legitimate photo and wallpaper apps simply won’t ask for those because they’re not necessary for such apps to run. If a request seems suspicious, don’t allow it,” McAfee wrote in its blog post.
The company says it has contacted Google and it is now working to get these malicious apps taken off the Play Store.
