- Zscaler -Truses found 77 malicious apps in Play Store
- They were downloaded more than 19 million times and carry different malware
- The most widespread variant was joker
Security Researchers have discovered 77 apps in the Google Play store that provides all sorts of malware to users.
Cumulatively, apps were downloaded 19 million times, according to Zscaler threats, revealing the big campaign after examining an infection of a popular Android Baking Trojan called Anatsa (or Tea Bot).
In the study, the researchers determined that the majority of apps – 25% – were used to implement Joker, a piece of malware that can send texts, grab screens, make phone calls, exfiltrate contact lists, subscribe to Premium services and more.
How to remain safe
In addition to Joker, the researchers also discovered a variant called Harly, various Adware Code and Anatsa, a dangerous bank Trojan that can now steal login credentials and other sensitive information from more than 800 bank and crypto apps. Anatsa also seems to have increased its extent, now also targeted victims in Germany and South Korea.
Most of the malicious apps were described as “maskware” – on the surface they work as intended, but in the background they can steal login -credentials, sensitive data and more.
In general, security researchers will advise everyone to download only apps from reputable sources.
But with the Google Play store as one of these reputable sources, it is obvious that this advice is not enough to remain in safety.
Users must also provide Play Protect, Android’s built -in security system that scans apps from the Play Store and device to malware, harmful behavior or suspicious activity.
In addition, users must review each app before downloading, looking at the overall score, the number of downloads and reviews. Looking through the reviews should be enough to determine if an app is a potential problem or not.
Finally, users must remember that the permissions fresh installed apps ask for. Most of the time requires malicious apps accessibility permits and it can serve as a reliable red flag.
Via Bleeping computer
