In some unfortunate news, the Google Play Store has unveiled yet another mischievous duo hiding in its digital realm. A leading cybersecurity company called Pradeo was the one to make the discovery. After detecting this illicit behavior, Pradeo immediately alerted Google, and the apps were removed from Google Play. Researchers at Pradeo found that two malicious apps contained spyware and have been secretly sending Android users' private data to servers in China. Here's what we know so far and what you can do if you have these apps downloaded to your device.
The two apps were posing as file management tools and had collectively amassed over 1.5 million downloads. The two apps are called File Recovery & Data Recovery and File Manager, both from the same developer. Each app was meant to be a way for Android users to help organize files and data on their phones. Both of the apps also stated that no data collection occurs under their watch.
THIS QUICK TRICK LETS YOU COPY TEXT FROM ANY IMAGE IN SECONDS
Credit: Pradeo
The Pradeo report found that these apps actually collected reams of private user information and shared it with China without people's knowledge, including contact lists, media files, real-time locations, mobile country codes, network provider details, SIM provider network codes, operating system versions, device brands, and models.
COULD A CHUNK OF THIS $37.5M FACEBOOK SETTLEMENT BELONG TO YOU?
The hackers behind these apps also made it look like they were trustworthy by using install farms to artificially inflate the number of downloads they had. By inflating the download count, they create an illusion of trustworthiness, making potential victims more likely to install their apps. Plus, each app also had advanced permissions to allow them to hide their icons on an Android Home Screen, so it's more difficult to uninstall them. This further aids the hackers in maintaining their presence on a victim's device, increasing the potential for unauthorized access or malicious activities.
MORE: MALICIOUS ANDROID SPYWARE DETECTED IN OVER 100 POPULAR APPS
We reached out to Google for a comment about the two malicious apps that were discovered on the Google Play Store, and a Google spokesperson had this to say:
"These apps have been removed from Google Play. Google Play Protect protects users from apps known to contain this malware on Android devices with Google Play Services, even when those apps come from other sources outside of Play."
DON'T PANIC: HERE'S WHAT TO DO IF APPLE THREATENS TO DELETE YOUR IPHONE PHOTOS
You can remove the apps yourself, but Google Play Protect, which is built-in malware protection for Android devices, automatically removes known malware. However, it is important to note that Google Play Protect may not be enough. Historically, it isn't 100% foolproof at removing all known malware from Android devices.
Keeping hackers out of your devices can be prevented if you have good antivirus software installed. Having antivirus software on your devices will make sure you are stopped from clicking on any potential malicious links which may install malware on your devices, allowing hackers to gain access to your personal information. Plus, it's designed to tell you when there is already malware on your device so that you can immediately work towards getting rid of it.
See my expert review of the best antivirus protection for your Windows, Mac, Android & iOS devices by heading to Cyberguy.com/LockUpYourTech.
HOW HACKERS ARE NOW TARGETING YOUR VOICE AND HOW TO PROTECT YOURSELF
Credit: Pradeo
Settings may vary depending on your Android phone’s manufacturer
MORE: ANDROID USERS AT RISK AS BANKING TROJAN TARGETS MORE APPS
Before downloading a new app to your phone, you should always be careful even if it's from a legit source like the Google Play Store or the App Store.
This is one of the most important steps you can take before downloading an app. You want to make sure that you understand exactly what kind of permissions an app has before giving over your personal information, and make sure you're also thoroughly reading reviews. Look for specificity in those reviews because sometimes hackers will post generic, fake reviews to make an app look legit when it's not. It also wouldn't hurt to do some research on the app developer to see if they're legit.
Sometimes, cybercriminals create fake or cloned versions of popular apps to trick you into downloading malware. Pay attention to app names, developer names, and reviews to ensure you’re downloading the legitimate version.
If something feels off about an app, trust your gut instincts. If an app seems suspicious, has poor reviews, or exhibits unexpected behavior, it’s best to err on the side of caution and avoid downloading or using it.
HOW TO HIDE PHOTOS ON YOUR IPHONE AND ANDROID FROM SNOOPS
Unfortunately, these hackers successfully trick innocent people into downloading these malicious apps, which is why we always have to stay vigilant and research everything before we download an app to our phones and tablets. Let's keep our guard up and remember that a few moments of precautionary research can save us from the endless headaches caused by these cunning hackers and their nefarious apps.
What more could app stores be doing to prevent malicious apps like these from sending our private data to foreign countries like China? Let us know by writing us at Cyberguy.com/Contact
For more of my security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter
Copyright 2023 CyberGuy.com. All rights reserved.
