You might think that apps listed on the Play Store are safe to download. That’s what Google wants you to believe, and for the most part it’s true. But in this digital world, no service is foolproof.
There have been many instances where widely downloaded apps on the Play Store have been infected with malware. While Google continues to promise that its app market is safe, another incident has come to light.
Security researchers have discovered a new Trojan malware called Necro. The malware not only infects apps downloaded from unofficial sources, but also apps on the Play Store, including apps with over 10 million downloads.
Get security alerts, tips from experts – Sign up for Cart Newsletter – Cyber Guy Report here
How does Necro infect apps?
It is still unclear exactly how both apps were initially infected with malware. researchers Kaspersky securelist believes A malicious software development kit (SDK) used to integrate advertising functionality may be the cause of the breach. SDKs are important tools that developers use to add specific functionality to their apps, such as advertising services, analytics, and payment processing.
Click here for more US news
If an SDK is compromised, it can inadvertently introduce vulnerabilities to applications that rely on it. In this case, the app-impacting malware displays ads in the background, installs apps and APKs without user consent, and uses invisible WebViews to generate illicit revenue for the attacker. I interacted with a paid service.
The Trojan in question, Necro, is not entirely new. This is the same malware that infected a popular document scanner called CamScanner in 2019, which had over 100 million downloads at the time.
Android banking Trojan evolves to evade detection and attack globally
Which apps are affected?
Kaspersky researchers have identified several apps affected by Necro Trojan, including those available on Google Play. Their combined audience was over 11 million Android devices.
The first app affected is Wuta Camera, a photo editing and beautification tool. At least 10 million times. The Necro loader is included starting with version 6.3.2.148. The latest version of the app, 6.3.6.148, available on Google Play also included this feature. The Trojan was removed from the app in version 6.3.7.138 after researchers reported the presence of malicious code to Google.
The second infected app was Max Browser. According to Google Play, the browser has been installed more than 1 million times and from version 1.2.0 also included the Necro loader. Google removed the infected app from the Play Store after receiving reports of it.
Kaspersky also discovered a WhatsApp MOD containing the Necro loader in unofficial sources. We also discovered a Spotify MOD called “Spotify Plus” that promises free access to the premium service without ads. Additionally, the report mentions mods for popular games such as Minecraft, Stumble Guys, Car parking Multiplayer, and Melon Sandbox, all of which were infected with the Necro loader.
A mod or modification is a modified version of the original app or game, often offering additional features or tweaks.
CLICK HERE TO GET FOX BUSINESS ON THE GO
Android banking Trojan impersonates Google Play to steal data
What will be Google’s response to this?
Google is aware of the Necro malware and has already removed the affected apps as mentioned above. A Google spokesperson issued the following statement:
“All malicious versions of the apps identified in this report were removed from Google Play prior to publication of the report. Android users are automatically protected from known versions of this malware by Google Play Protect. Google Play Protect is turned on by default on Android devices with Google Play.” Google Play Protect services can exhibit malicious behavior even if they come from sources other than Play. You can warn users about known apps or block them. ”
The hidden cost of free apps: personal information
4 ways to protect yourself from Necro malware
1. Use strong antivirus software. Android has its own built-in malware protection called Play Protect, but Necro Trojan proves that it’s not enough. Historically, Play Protect has not been 100% sure to remove all known malware from Android smartphones. The best way to protect yourself from clicking on malicious links that install malware that can access your personal information is to install antivirus protection on all your devices. This also results in a warning like this: phishing email or Ransomware scam. Get my picks for the best antivirus protection products of 2024 for Windows, Mac, Android, and iOS devices.
2. Download apps from trusted sources. It’s important to only download apps from trusted sources, such as the Google Play Store. Although it may seem contradictory, the Play Store is more secure than other options. Rigorous checks are carried out to prevent malware and other harmful software. However, even with the security measures provided by Google Play, downloading an app from the store cannot guarantee 100% protection from malware and harmful software. Avoid downloading apps from unknown websites or unofficial stores as they may pose a high risk to your personal data and device. Never trust download links received via SMS.
3. Be careful with app permissions. Always check the permissions requested by the app before installing. If an app requests access to features that you think aren’t necessary for its functionality, that could be a sign of malicious intent. Don’t give apps accessibility permissions unless you really need them. Avoid granting permissions that could compromise personal data.
4. Update your device’s operating system and apps regularly. Store the software Latest This is very important because updates often include security patches for newly discovered vulnerabilities that can be exploited by Trojan horses.
Banking Trojan targets more apps, putting Android users at risk
Cart important points
The discovery of Necro loaders in apps like Wuta Camera, Max Browser, and popular game mods shows how serious security concerns are in the app world. With over 11 million Android devices affected, it’s important to be careful where you download apps. Unofficial sources can be a breeding ground for hidden threats, and the Play Store isn’t completely safe either. Google needs to consider what apps it allows on its platform. I haven’t seen as many malware issues affecting iPhone apps as I have on Android.
CLICK HERE TO GET THE FOX NEWS APP
Do you think Google is doing enough to protect you from malware on the Play Store? Email us. Cyberguy.com/Contact
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report newsletter using the link below. Cyberguy.com/Newsletter
Ask your cart a question or let us know your story you’d like us to feature
Follow Cart’s Social Channels
Answers to CyberGuy frequently asked questions:
New from cart:
Copyright 2024 CyberGuy.com. Unauthorized reproduction is prohibited.