Android users must delete five apps now after experts find malicious spy technology to hack banks

Share on facebook
Share on twitter
Share on linkedin
Share on pinterest
Share on telegram
Share on email
Share on reddit
Share on whatsapp
Share on telegram


FIVE apps with potentially dangerous spyware technology have managed to remain on the Google Play Store undetected for two years, according to experts.

The group of apps went unnoticed in checks and has been downloaded more than 32,000 times since 2021.

1

The most popular of all is an app called AirFS – File Sharing over Wi-FiCredit: Kaspersky

The so-called “Mandrake” spyware has been known to cybersecurity professionals since 2016.

But Kaspersky reported a new version of “Mandrake” affecting Android with “new layers of obfuscation and evasion techniques.”

“The main distinguishing feature of the new Mandrake variant was layers of obfuscation designed to bypass Google Play checks and make analysis more difficult,” says Kaspersky.

“We discovered five apps containing Mandrake, with more than 32 thousand downloads in total.”

Worryingly, the majority of downloads originate from the UK, as well as Canada, Germany, Italy, Mexico, Spain and Peru.

Once installed, spyware is capable of collecting data, recording and monitoring your screen, and even simulating swipes and taps.

In the worst case, these could be used by hackers to break into your private accounts, especially bank accounts.

It is also able to install more malicious apps and display fake notifications to trick you into downloading more dangerous content.

Most Read on Phones & Gadgets

“After the apps from the first campaign remained undetected for four years, the current campaign was hidden in the shadows for two years, while still being available for download on Google Play,” Kaspersky continued.

“This highlights the formidable abilities of threat actors and also that tighter controls on apps before they are published on markets only translates into more sophisticated and harder to detect threats infiltrating official app markets.”

Google reveals clever trick to prevent thieves from emptying your accounts on Android 15

The five applications in question have already been banned.

In a statement to BeepingComputerGoogle said: “Google Play Protect is continually improving with each app identified.

“We are always improving its capabilities, including live threat detection to help combat obfuscation and anti-evasion techniques.

“Android users are automatically protected against known versions of this malware by Google Play Protect, which is enabled by default on Android devices with Google Play Services.

“Google Play Protect can alert users or block apps known to exhibit malicious behavior, even when those apps come from sources outside of Play.”

If you don’t have Google Play Protect turned on or want to make sure you haven’t downloaded any of the apps in question, check the list below and delete the ones you find now.

  • AirFS – File sharing via Wi-Fi – By it9042
  • Astro Explorer – By Shevabad
  • Amber – By kodaslda
  • CryptoPulsing – By Shevabad
  • Brain Matrix – By kodaslda

Must-Know Android Tips to Boost Your Phone

Make the most of your Android smartphone with these little-known hacks:



This story originally appeared on The-sun.com read the full story

Support fearless, independent journalism

We are not owned by a billionaire or shareholders – our readers support us. Donate any amount over $2. BNC Global Media Group is a global news organization that delivers fearless investigative journalism to discerning readers like you! Help us to continue publishing daily.

Support us just once

We accept support of any size, at any time – you name it for $2 or more.

Related

More

How to find your polling place

August 13, 2024
Florida’s primary elections are next Tuesday. Do you know where you need to go to vote? To make sure you get to the right place to vote on
1 2 3 9,595

Don't Miss

Rocket fired from Gaza fell into the sea off Tel Aviv: Israeli Army

Rocket fired from Gaza fell into the sea off Tel Aviv: Israeli Army

The attack took place with Israel on high alert. (Representational)
RCB vs CSK LIVE Score, IPL 2024: Threat of rain looms for do-or-die match between RCB and CSK

RCB vs CSK LIVE Score, IPL 2024: Threat of rain looms for do-or-die match between RCB and CSK

IPL 2024 Royal Challengers Bengaluru vs Chennai Super Kings LIVE©BCCI