PSA: Recently, more than twenty fraudulent Android apps that were well-liked on the Google Play Store were uncovered by security researchers. They pose as harmless tools while secretly keeping an eye on users and taking personal data. The majority of them were removed by Google, but many devices presumably still have them loaded.
This week, security company Dr. Web released its June 2022 mobile virus activity report, which listed about 30 well-known Android apps that contained malware such as trojans, adware, spyware, and other types of malware. Some of them had millions or perhaps a few hundred thousand downloads from the Google Play Store.
The malicious apps primarily take the form of wallpaper, theme, and photo editing programs. The list also included a note-taking app and an emoji keyboard that had malware coded into them.
After being installed by consumers, they display invasive adverts, con people, and steal data from devices all while hiding from users. One targets WhatsApp communications explicitly. Another uploads extra software, promotes users to install other apps, or steals information from notifications from other programs.
Some are even crueler than that, like one who secretly records movies and takes pictures. Another enables hackers to read text messages, locate a device, see its browsing history, activate its microphone, record keystrokes, and access other information.
Dr. Web also talks about malware that can be used to attack Facebook accounts by stealing information. Before intercepting the input data, they can urge their victims to sign in using legitimate Facebook sign-in prompts. Another type of malware that lurks in phony apps downloads and executes arbitrary code to covertly sign users up for subscription-based services.
Some applications perform the functions they offer while secretly hacking users. Others, however, are wholly fraudulent, such as phony dating services that demand personal data and subscription money to maintain phony talks.
Some malware uses adware to display obtrusive advertisements. They display numerous notifications and load full-screen advertising that completely obstruct the use of other apps.
These malicious apps may request a number of permissions after being downloaded in order to covertly monitor users and steal data. These include requests to run in the background continuously, show on top of other apps, or turn off recording alerts. The apps may also swap out their original home menu icons for less noticeable ones in order to conceal themselves.
Almost all of the vulnerable apps were deleted by Google after Dr. Web alerted the business, although others are still available on the Play Store. Dr. Web made the whole list of errant individuals public (sample below). You should manually look for any you installed, remove them, and then perform a virus check.
Photo Editor: Retouch & Cutout (de.nineergysh.quickarttwo)
Photo Editor: Art Filters (gb.painnt.moonlightingnine)
Photo Editor & Background Eraser (de.photoground.twentysixshot)
Photo & Exif Editor (de.xnano.photoexifeditornine)
Photo Editor – Filters Effects (de.hitopgop.sixtyeightgx)
Emoji Keyboard: Stickers & GIF (gb.crazykey.sevenboard)
Neon Theme – Android Keyboard (com.androidneonkeyboard.app)
Fancy Charging (com.fancyanimatedbattery.app)
FastCleaner: Cashe Cleaner (com.fastcleanercashecleaner.app)
Call Skins – Caller Themes (com.rockskinthemes.app)
Funny Caller (com.funnycallercustomtheme.app)a
