Never miss a story

Get subscribed to our newsletter


×
Huawei smartphones are seen in front of displayed Google Play logo in this illustration picture, May 20, 2019. VOA

Security researchers have detected a massive year-long adware campaign where the involved apps were installed on users’ Android devices eight million times from Google Play alone.

Slovak internet security company ESET identified 42 apps on Google Play as belonging to the campaign, which had been running since July 2018. Of those, 21 were still available at the time of discovery.


“We reported the apps to the Google security team and they were swiftly removed. However, the apps are still available in third-party app stores,” said the researchers in a statement on Thursday.

Once launched, the “Ashas” adware family app sent “home” key data about the affected device: device type, OS version, language, number of installed apps, free storage space, battery status, whether the device is rooted and Developer mode enabled, and whether Facebook and FB Messenger are installed.

“The app receives configuration data from the command and control server (C&C) server, needed for displaying ads, and for stealth and resilience,” said security researcher Lukas Stefanko.

Once a user installed an adware-infected app, the app will show full-screen ads on the device’s display at intervals.


Google acquired Android Inc. for nearly $50 million in July 2005. Pixabay

First, the malicious app tries to determine whether it is being tested by the Google Play security mechanism.

After dodging Google servers, the malicious app can set a custom delay between displaying ads. Based on the server response, the app can also hide its icon and create a shortcut instead.

Also Read: Now Watch Apple TV App on Amazon Fire TV

“If a typical user tries to get rid of the malicious app, chances are that only the shortcut ends up getting removed. The app then continues to run in the background without the user’s knowledge. This stealth technique has been gaining popularity among adware-related threats distributed via Google Play,” the researchers noted.

According to the team, students at a Vietnamese university may be behind the malicious adware app.

“Due to poor privacy practices on the part of our culprit’s university, we now know his date of birth, we know that he was a student and what university he attended. We retrieved his University ID; a quick googling showed some of his exam grades,” said researchers.

“The malicious developer also has apps in Applea¿s App Store. Some of them are iOS versions of the ones removed from Google Play, but none contain adware functionality,” said Stefanko. (IANS)


Popular

wikimedia commons

A South Asia Economy Index

By- Tejas Maheta

When attempting to summarise the current performance and future portents for the South Asia economy, it's arguable that most of the region's nations are doing relatively well.

Keep Reading Show less
wikimedia commons

Bitcoin is gaining prominence in the virtual and business world

By- Jean Nichols

Bitcoin is the first cryptocurrency, and many people have been inspired by bitcoin, and they started to create their cryptocurrency. Even many people are creating their cryptocurrency. Daily there is a new cryptocurrency that is created daily. In this further, we will discuss the factors required to make our cryptocurrencies are.

Keep Reading Show less

BSC has a Proof-of-Staked-Authority (POSA), which makes the process less energy-intensive, and faster.

By- Steve Carty

Blockchain technology has proven over the years that it is here to stay, and one of the infrastructures that it houses is the Binance Smart Chain (BSC). The BSC has many benefits, like lower gas fees, and already has many tokens listed on it. This is why we believe the HUH Token is being created on such a secure and affordable platform.

Keep reading... Show less