CYBERSECURITY: 22 apps with 2 million+ Google Play downloads had a malicious backdoor. “Device-draining downloader used for ad fraud could have recovered other malicious files.”

via arstechnica:

The 22 rogue titles included Sparkle Flashlight, a flashlight app that had been downloaded more than 1 million times since it entered Google Play sometime in 2016 or 2017, antivirus provider Sophos said in a blog post published Thursday. Beginning around March of this year, Sparkle Flashlight and two other apps were updated to add the secret downloader. The remaining 19 apps became available after June and contained the downloader from the start.

By the time Google removed the apps in late November, they were being used to click endlessly on fraudulent ads. “Andr/Clickr-ad,” as Sophos has dubbed the family of apps, automatically started and ran even after a user force-closed them, functions that caused the apps to consume huge amounts of bandwidth and drain batteries.

I don’t have much experience with Android, so I’ll have to ask Instapundit readers how an app steals permission to continue running after a force-close.

READ  Japan To Pour 1 Million Tons Of Contaminated Fukushima Water Into Ocean
READ  Award-Winning Inventor Offered $10 Million to Stay Quiet About Democrat Voter Fraud

 

h/t SG

840 views

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.