It turns out that 100,000 downloaded Android apps are loaded with malware that extracts personal information



Some Android apps that can be downloaded on Google Play are malicious apps that illegally collect user information or reset the smartphone even though they have undergone the formal publishing procedure. According to a report by a French security company on March 21, 2022, it was discovered that an image processing app on the Google Play store was stealing Facebook data from more than 100,000 users.

Spyware dubbed Facestealer infects 100,000+ Google Play users

https://blog.pradeo.com/spyware-facestealer-google-play

Android password-stealing malware infects 100,000 Google Play users
https://www.bleepingcomputer.com/news/security/android-password-stealing-malware-infects-100-000-google-play-users/

There have been many reports of cases where apps posted on Google Play, the official Android app store, contain malware such as malicious viruses, and 500,000 times from the end of 2021 to the beginning of 2022 alone. Even if the downloaded message app is infected with dangerous malware, or a new type of malware that resets the smartphone after stealing all bank deposits is born , it is posted on the official app store 100 % The situation that cannot be said to be safe continues.

An app downloaded 500,000 times on Google Play was sending user contacts to a Russian server-GIGAZINE



This situation does not mean that 'apps with a large number of users are safe'. On March 21, 2022, it was announced that malware was loaded into 'Craftsart Cartoon Photo Tools', an application that can process images downloaded more than 100,000 times on Google Play in a manga style. According to a report by mobile security researcher Pradeo , 'Craftsart Cartoon Photo Tools' contains 'FaceStealer', a malware that steals Facebook login information that users need to use the app. There seems to be. Since Facebook login is required to use the functions of the app, all users are informed.



According to Pradeo, if it is created by inserting some malicious code into a legitimate application, it will be possible to clear the review procedure of the Google Play store. 'Craftsart Cartoon Photo Tools', which was reported to contain malware, was removed from Google Play as of March 22, 2022 after being notified by Pradeo, but Pradeo sent the report to Google Play on March 21. As of the day, the app was still available for download, Pradeo said.

Bleeping Computer , a computer help site, warns that high downloads aren't always reliable, saying, 'Most of the time, you can check reviews on Google Play to find fraudulent or malicious apps. You can do it. ' As a matter of fact, in the case of this 'Craftsart Cartoon Photo Tools', the average score of the 5-grade evaluation was 1.7, which was a low evaluation as you can see, but I just glanced at the average score. Then, there are cases where it cannot be determined that the application has a problem. Regarding such cases, Bleeping Computer explained that in cases such as 'There are 5 ratings but many 1s', there is a possibility that the ratings are manipulated by Sakura Review, so you should be careful and check the number of ratings. doing.

in Software,   Security, Posted by log1e_dh