Summary: A large-scale ad fraud campaign has led to over 60 million downloads of malicious apps from the Google Play Store. These 331 apps bypass Android security restrictions, display unwanted ads, and attempt to steal user data through phishing tactics. The threat remains active, with ongoing modifications by attackers to evade detection.
Affected: Google Play Store
Keypoints :
- Malicious apps mimic common utility applications to deceive users.
- They exploit Android vulnerabilities to run in the background, bypassing user-initiated actions.
- Continuous updates and modifications of the malicious apps suggest attackers are adapting to detection methods.
- Phishing attempts are executed without user permissions, targeting sensitive user credentials and payment information.
- Attackers utilize custom command and control domains and employ various encryption techniques to protect their communications.
Source: https://www.infosecurity-magazine.com/news/malicious-app-bypass-android/