Android malware sneaks into 60 Play Store apps

Using a trick, hackers managed to circumvent Google’s security measures and inject malware into Play Store apps. Malicious code found in 60 legitimate tools. Together, the programs have been downloaded about 100 million times.

download…

high computer bleed The apps have been compromised with Android malware Goldoson. The malware is built into a library used by developers of many applications. Affected apps include “L.POINT with L.PAY”, “Swipe Brick Breaker”, “Money Manager Expense & Budget”, “Pikicast” and “Korea Subway Info”. A full list can be found here Find.

Security researchers at McAfee discovered that Goldoson was spying on users of infected smartphones. For this purpose, data is collected on installed applications and devices connected via WLAN and Bluetooth. Further, the user’s GPS location is tapped. After the malware runs, it connects to a server owned by the hackers. The returned configuration specifies the data that Goldoson should transmit. The malware is also used to click on ad banners and thus generate income.

The library has since been removed from the apps

Developers of affected applications have been notified of the security issue and asked to replace the third-party library. All apps that still contain malicious code have already been removed from the Google Play Store. Anyone using an affected app should delete the tool or install the latest update.

See also:

Related topics