Google’s Android ecosystem is home to over three billion users and it’s very lucrative for bad actors to prey on naive mobile owners.
Despite the efforts of search engine giants, hackers are finding innovative ways to circumvent security to introduce apps containing malware to Play Store.
In the latest case, Maxime Ingrao, a French security researcher at Evina Tech, unearthed eight malicious Android camera and photo-editing apps.
The app looks benign, but it is said to harbor shady Autolycos malware, which is classified as dangerous and similar to the infamous Joker.
The modus operandi of apps associated with Autolycos is to illegally subscribe to a bogus premium subscription service without the permission of mobile phone owners and fleece money.
Owners will never know how they subscribed to an unwanted service, and it will also be late to recover the lost money.
Here is the list of malicious apps:
Vlog Star Video Editor, Creative 3D Launcher, Wow Beauty Camera, Gif Emoji Keyboard, Freeglow Camera, Coco Camera v1.1, Funny Camera by KellyTech and Razer Keyboard & Theme by rxcheldiolola.
Altogether more than three million people around the world have downloaded the above-mentioned apps and they are at risk of losing money and some might have already lost money.
New family of malware discovered that subscribes to premium services 👀
8 apps since June 2021, 2 apps still on Play Store, +3M installs 💀💀
No web view like #Joker but only http requests
— Maxime Ingrao (@IngraoMaxime) July 13, 2022
Ingrao had informed Google about the apps, but it was only recently that the latter removed them from the Play Store. However, those who have already installed them, are advised to uninstall them immediately.
Also, it is recommended to install anti-virus security apps on Android phones to detect malicious apps early before it is too late.
Learn more | Lockdown mode: Apple’s magic bullet for mercenary spyware
Get the latest news on new launches, gadget reviews, apps, cybersecurity and more on personal tech only on DH Tech.