Series of Android applications contain malicious code you should remove immediately from your device
At least 5 of them have not been removed, and the total number of downloads is more than 2 million.
The adware often displays advertisements against the user's will. They cause discomfort, reduce the satisfaction of the experience, drain the battery, generate heat, and even cost users money by subscribing to useless service packages.
These apps often hide their malicious activity by masquerading as another app. They bring in money to their owners based on ad impressions and ad clicks.
On the other hand, information-stealing malware is much more annoying. They steal your login information, your personal data, your bank account.
Analysts of anti-virus firm Dr. Web reports that adware and information-stealing malware were among the most prominent Android threats in May 2022.
At the top of the report are spy apps that can steal information from other apps' notifications, mainly by getting two-step authentication codes (OTP codes) and taking over accounts.
Of the many malicious apps that have made their way into the Google Play Store, the following five have yet to be removed (as of the time of writing):
- PIP Pic Camera Photo Editor - 1 million downloads: The app steals users' Facebook credentials, fakes photo editing software.
- Wild & Exotic Animal Wallpaper - 500,000 downloads: App contains adware, replaces its icon and name itself with "SIM Toolkit" and adds itself to the battery saving exceptions list.
- ZodiHoroscope - Fortune Finder - 500,000 downloads: Malware steals Facebook accounts by tricking users into entering to disable ads in the app.
- PIP Camera 2022 - 50,000 downloads: The camera effect application contains malicious code to steal Facebook accounts.
- Magnifier Flashlight - 10,000 downloads: Flashlight application but displays ads in the form of videos, banners.
Currently, Google has not made any announcements about these malicious applications.
Other malicious applications that Dr. Web sites discovered in May 2022 include a racing game, a deleted photo recovery tool, an app aimed at Russian users, and an app that provides free access to the Only Fans platform.
The above applications have been removed from the Google Play Store, but if users have installed them, they must immediately uninstall and use anti-virus software for smartphones to scan all remaining malicious code.
Finally, the Hydra banking malware has also appeared and lurked in a PDF file manager on the Google Play Store. After being downloaded 10,000 times, this application has been removed by Google but is still available on third-party app stores such as APKAIO.com, APKCombo.com.
You should read it
- Detects many malicious Android applications that hide icons themselves to make it harder to uninstall
- Android apps contain malicious code that uses motion sensors to avoid detection
- 4 Android VPN applications with over 500 million downloads were found to be ad fraud
- How to detect malicious apps on Android
- The best Android apps
- Top 10 Android apps you shouldn't install
- How to kill viruses, remove malicious codes on Android
- Most Android anti-virus software cannot detect malicious APK files
- Why are Android tablet apps so bad?
- Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware
- Detects 146 security holes in pre-installed Android applications
- 23 malicious apps that steal Facebook and Instagram accounts and blackmail users, need to be removed immediately