Malicious Apps Removed From Google Play Store
NJCCIC Alert
Original Release Date: 2018-10-30
Beginning in August and through early October of this year, researchers observed numerous malicious applications available in the official Google Play Store. The apps included device boosters, cleaners, battery managers, and daily horoscopes, and were installed by approximately 30,000 users prior to their detection and removal from the Play Store. These applications infected devices with remote access trojans capable of intercepting and redirecting text messages to circumvent multi-factor authentication and possessed the ability to intercept call logs and deliver additional applications onto compromised devices.
Users are advised to exercise caution before downloading apps onto their device, even those available in official app stores, and refrain from granting apps unnecessary permissions or those that do not align with the application’s intended purpose. For a list of affected applications and additional indicators of compromise (IOCs), review the ESET report here.
Featured Content
- Pulse Connect Secure Vulnerabilities Are Actively Being Exploited>
- Phishing Campaigns Attempt to Steal Credentials for Cloud Services>
- Geico Hack Impacts Residents in 8 States>
- SonicWall Email Security Vulnerabilities Are Actively Being Exploited>
- New Critical Vulnerabilities in On-Premises Microsoft Exchange Servers>
- Threat Actors Abuse Contact Forms in Recent Malware Campaigns>
- Google Chrome Vulnerabilities Exploited in the Wild – Patch Now>
- Increase in Ransomware Attacks Targeting Education Sector>
The NJCCIC is a component organization within the New Jersey Office of Homeland Security and Preparedness. We are the State's one-stop-shop for cyber threat analysis, incident reporting, and information sharing and are committed to making New Jersey more resilient to cyber threats by spreading awareness and promoting the adoption of best practices.
View our Privacy Policy here.
View our Site Index here.