155 Google Play Android Apps Containing Trojan Affects 2.8 Million Users
Dr.Web, a security firm, says that they have informed Google regarding the new threat, however Google is yet to remove all the infringing apps, and moreover, they are also releasing the list of all the apps names they have found with traces of trojan to enable users to avoid these apps.
The search giant is pulling down more than 150 apps of Android, which one of the security firms is claiming to have contained the advertising SDK (Software Developer Kit), which collects private data and serves annoying ads.
According to this scheme of things, annoying ads are petty mobile threat but nevertheless fall into the category of 'potentially unwanted' app. Besides that, once you have installed an application from the Google Play, you are not expecting in-app ads to breach developer terms of Google's and show them on interface of the Android system. cso.com posted on August 2nd, 2016, quoting Dr. Web, a Russian security firm, as saying that 155 applications on the Google Play is expected to do the same thing, along with scaring user into buying the applications which resolve the malware infection that is bogus.
Researchers of Dr.Web found the Android.Spy.277 in 104 apps of Android on the Google Play Store, which is downloaded over 3.2 million times. By adding the total downloads number for the Android.Spy.305, security researchers of Dr.Web say that more than 2.8 million users may be affected from this new trojan version.
More than half of applications it counted are related with country-specific app versions, known as Doril Radio. Trojan collected details such as email account of Android user, unique device identifiers, installed apps list, name of the trojanised app, mobile network operator, and the ID of the app developer.
The malicious behavior of Android.Spy.305 will start, once tainted app is installed by the user. It will first collect the data of user's device, like email address of their Google user account, OS version, OS language, name and model of the device, as well as IMEI.
As per Dr.Web, it has identified trojan in apps offered by the developers like Fatty Studio, MaxMitek Inc, Gig Mobile, Sigourney Studio, TruApp Lab, Mothrr Mobile Apps, Finch Peach Mobile Apps, and Doril Radio.FM.
» SPAMfighter News - 8/5/2016