Series of Android applications contain malicious code you should remove immediately from your device

At least 5 of them have not been removed, and the total number of downloads is more than 2 million.

The adware often displays advertisements against the user's will. They cause discomfort, reduce the satisfaction of the experience, drain the battery, generate heat, and even cost users money by subscribing to useless service packages.

These apps often hide their malicious activity by masquerading as another app. They bring in money to their owners based on ad impressions and ad clicks.

On the other hand, information-stealing malware is much more annoying. They steal your login information, your personal data, your bank account.

Series of Android applications contain malicious code you should remove immediately from your device Picture 1

Analysts of anti-virus firm Dr. Web reports that adware and information-stealing malware were among the most prominent Android threats in May 2022.

At the top of the report are spy apps that can steal information from other apps' notifications, mainly by getting two-step authentication codes (OTP codes) and taking over accounts.

Of the many malicious apps that have made their way into the Google Play Store, the following five have yet to be removed (as of the time of writing):

1. PIP Pic Camera Photo Editor - 1 million downloads: The app steals users' Facebook credentials, fakes photo editing software.
2. Wild & Exotic Animal Wallpaper - 500,000 downloads: App contains adware, replaces its icon and name itself with "SIM Toolkit" and adds itself to the battery saving exceptions list.
3. ZodiHoroscope - Fortune Finder - 500,000 downloads: Malware steals Facebook accounts by tricking users into entering to disable ads in the app.
4. PIP Camera 2022 - 50,000 downloads: The camera effect application contains malicious code to steal Facebook accounts.
5. Magnifier Flashlight - 10,000 downloads: Flashlight application but displays ads in the form of videos, banners.

Currently, Google has not made any announcements about these malicious applications.

Other malicious applications that Dr. Web sites discovered in May 2022 include a racing game, a deleted photo recovery tool, an app aimed at Russian users, and an app that provides free access to the Only Fans platform.

Series of Android applications contain malicious code you should remove immediately from your device Picture 2

The above applications have been removed from the Google Play Store, but if users have installed them, they must immediately uninstall and use anti-virus software for smartphones to scan all remaining malicious code.

Finally, the Hydra banking malware has also appeared and lurked in a PDF file manager on the Google Play Store. After being downloaded 10,000 times, this application has been removed by Google but is still available on third-party app stores such as APKAIO.com, APKCombo.com.

Micah Soto

Update 22 July 2022