SECURITY
SECURITY
SECURITY
Google removes 85 Android adware apps downloaded by users millions of times
The new year has ushered in a new range of Android malware, as Google LLC was forced to remove 85 nefarious apps uncovered Tuesday by security researchers at Trend Micro Inc.
The apps, disguised as 85 game, TV and remote control simulator apps on the Google Play Store, contained a code for a recently discovered adware family known as AndroidOS_HidenAd.
The adware code apparently can display full-screen ads, hiding itself, monitoring a device’s screen unlocking functionality and running in the mobile device’s background.
In total, the apps are believed to have been downloaded about 9 million times, with one single app, “Easy Universal TV Remote,” downloaded more than 5 million times.
Screenshots from the testing of the adware show insidious ad insertion, including full-screen ad overlays that when closed often present even more ads. Typically, the adware would sit in the background of an infected Android device and display a full-screen ad every 15 or 30 minutes regardless of whether the user had the infected app open at a given point of time.
“While the fake apps can be removed manually via the phone’s app uninstall feature, it can be difficult to get there when full-screen ads show up every 15 or 30 minutes or each time a user unlocks the device’s screen,” the researchers wrote.
Mike Bittner, digital security and operations manager at The Media Trust, told SiliconANGLE that adware is not just annoying but can also be risky to users by directing devices to steal information linked to the user’s device and behaviors, downloading unwanted files and redirecting users to malicious sites.
“It is tantamount to a hostile takeover of the user’s browser,” Bittner said. “Once bad actors are able to collect information en masse, they can sell the information on the dark web or parlay that information for targeting activities that enable bad actors to commit identity theft or influence voter behavior.”
Bittner said it’s significant that organizations are working together to eliminate malicious apps from the digital ecosystem. “These types of collaboration are key to combating hackers, who themselves are banding together to develop ever more potent malware for increasingly sophisticated malicious campaigns,” he said.
A full list of the adware-infected apps can be found here.
Image: jdhancock/Flickr
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
