Malicious Apps Removed From Google Play Store

Beginning in August and through early October of this year, researchers observed numerous malicious applications available in the official Google Play Store. The apps included device boosters, cleaners, battery managers, and daily horoscopes, and were installed by approximately 30,000 users prior to their detection and removal from the Play Store. These applications infected devices with remote access trojans capable of intercepting and redirecting text messages to circumvent multi-factor authentication and possessed the ability to intercept call logs and deliver additional applications onto compromised devices. Users are advised to exercise caution before downloading apps onto their device, even those available in official app stores, and refrain from granting apps unnecessary permissions or those that do not align with the application’s intended purpose. For a list of affected applications and additional indicators of compromise (IOCs), review the ESET report here.