Wednesday, January 20, 2021
Home Lead Story 42 Malicious Apps Affected 8 Million Android Users: Report

42 Malicious Apps Affected 8 Million Android Users: Report

"The malicious developer also has apps in Applea¿s App Store. Some of them are iOS versions of the ones removed from Google Play, but none contain adware functionality," said Stefanko

Security researchers have detected a massive year-long adware campaign where the involved apps were installed on users’ Android devices eight million times from Google Play alone.

Slovak internet security company ESET identified 42 apps on Google Play as belonging to the campaign, which had been running since July 2018. Of those, 21 were still available at the time of discovery.

“We reported the apps to the Google security team and they were swiftly removed. However, the apps are still available in third-party app stores,” said the researchers in a statement on Thursday.

Once launched, the “Ashas” adware family app sent “home” key data about the affected device: device type, OS version, language, number of installed apps, free storage space, battery status, whether the device is rooted and Developer mode enabled, and whether Facebook and FB Messenger are installed.

“The app receives configuration data from the command and control server (C&C) server, needed for displaying ads, and for stealth and resilience,” said security researcher Lukas Stefanko.

Once a user installed an adware-infected app, the app will show full-screen ads on the device’s display at intervals.

android ui
Google acquired Android Inc. for nearly $50 million in July 2005. Pixabay

First, the malicious app tries to determine whether it is being tested by the Google Play security mechanism.

After dodging Google servers, the malicious app can set a custom delay between displaying ads. Based on the server response, the app can also hide its icon and create a shortcut instead.

Also Read: Now Watch Apple TV App on Amazon Fire TV

“If a typical user tries to get rid of the malicious app, chances are that only the shortcut ends up getting removed. The app then continues to run in the background without the user’s knowledge. This stealth technique has been gaining popularity among adware-related threats distributed via Google Play,” the researchers noted.

According to the team, students at a Vietnamese university may be behind the malicious adware app.

“Due to poor privacy practices on the part of our culprit’s university, we now know his date of birth, we know that he was a student and what university he attended. We retrieved his University ID; a quick googling showed some of his exam grades,” said researchers.

“The malicious developer also has apps in Applea¿s App Store. Some of them are iOS versions of the ones removed from Google Play, but none contain adware functionality,” said Stefanko. (IANS)

STAY CONNECTED

19,120FansLike
362FollowersFollow
1,773FollowersFollow

Most Popular

Armaan Malik on Factors Threatening Our Mental Health

Singer Armaan Malik has opened up on the factors that he feels are responsible for threatening our mental health. Armaan feels that we as a...

Thane Athlete Is First To Complete The Everesting Running Challenge

An athlete from Thane has become the first Indian woman to complete the grueling Everesting Running Challenge (ERC), while a man finished it fastest,...

Techniques To Predict COVID Outcomes

Researchers have published one of the first studies using a Machine Learning (ML) technique called "federated learning" to examine electronic health records to better...

Colorectal Cancer Can Be Prevented by Tests: Study

Researchers have demonstrated that a simple, cheap test can help identify who is at risk of developing colorectal cancer, aiding early diagnosis and potentially...

Space Junk: What is it and Who Owns it?

You may think that space is just a void - an unimaginably large, empty space stretching out forever. However, while that may be true...

What is The Difference Between Srimad Bhagavad Gita and Srimad Bhagavatam? Answered!

It becomes very essential to understand and become aware of our rich cultural heritage. This also includes the knowledge about our Hindu Vedic texts...

Here’s Why You Must Consider Switching From Facebook Messenger Soon!

As the debate rages over new WhatsApp data sharing policy, another Facebook family product called Messenger does not offer any end-to-end protection and is...

“Audience Does Not Pay Heed To The Roles I Like Personally”, Says Nawazuddin Siddiqui

Critically acclaimed actor Nawazuddin Siddiqui says he loves playing dry characters that do not go overboard with emotions, even though the audience rarely roots...

Recent Comments