Login | Register 
Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Infected Applications Removed from Google Play Store

Total Tech Care Blog Security
0 Comments
Infected Applications Removed from Google Play Store

We all download apps. There are literally millions of apps to choose from and sometimes nefarious developers can get their application published with ulterior motives. A situation has just happened as Google has removed twenty-two apps that were found to contain automated click-fraud scripts from the Google Play Store. We’ll take a short look at what these developers were up to, and how the fraudster would affect you if you were one of the two million users that happened to download these apps.

What Apps?
First, we’ll start with a complete list of the apps that had been infested with this nefarious code:

  • Sparkle FlashLight
  • Snake Attack
  • Math Solver
  • ShapeSorter
  • Tak A Trip
  • Magnifeye
  • Join Up
  • Zombie Killer
  • Space Rocket
  • Neon Pong
  • Just Flashlight
  • Table Soccer
  • Cliff Diver
  • Box Stack
  • Jelly Slice
  • AK Blackjack
  • Color Tiles
  • Animal Match
  • Roulette Mania
  • HexaFall
  • HexaBlocks
  • PairZap

What Did These Apps Do?
SophosLabs found a cache of apps that feature what they call “Andr/Clickr-ad” malware. These applications are engineered with maximum flexibility in mind. They could contact a common attacker-controller server to download what is called an ad-fraud module. It does this every 80 seconds. The malware simply opened a non-visible window and would repeatedly click on ads, making the network look like it was getting more traffic, fraudulently enhancing the developers’ revenue.

No specific ad network was specified by Sophos, but users who had downloaded these applications would see a decrease in the battery life and/or an increase in the amount of data their device would use. One strange part of this is that some of the ad traffic was able to identify itself as from coming from iPhones, despite this appearing on Android-only apps. They came from “Apple models ranging from iPhone 5 to 8 Plus and from 249 different forged models from 33 distinct brands of Android phones.” This ploy was used as a way to increase revenues further as some advertisers will pay a premium to get their ads onto Apple devices. iOS versions of the apps, largely by the same developers, didn’t have the malicious code integrated.

Download Legit Apps
How can you go about making sure that you aren’t part of this problem? Download legitimate applications. Some of the best ways to make sure the apps you are downloading are legit, include:

  • Read a lot of reviews - Much of the information you will need to see the legitimacy of an application can be found in the review of the app in the store. If you make a point to read eight or more reviews, you will quickly get a good idea about how functional the application is.
  • Check app permissions - Applications need permission from a user to use the core functions of the phone. If the application in question tends to need access to functions that it shouldn’t, you should be skeptical about the application.
  • Check the terms and conditions - Most people don’t go through the terms and conditions of anything, let alone an application for their smartphone. Even if you do make a point to read them, the amount of legalese found is akin to a lullaby or a warm glass of milk. The problem for users is that there is a lot of good information about the applications, and specifically how it uses data. If you do set aside some time to read about it, check out some language that is relevant to the way you use the application.
  • Research the developer - Nowadays, software development is filled with people that are looking to make a name for themselves. This type of ambition can lead to bad decision making. If you take some time to do some basic research about the developer of an app you have reason to question, you’ll likely find the truth of whether they can be trusted or not. If they want to be known, they likely promote their work via social media, so, start there.

Android has millions of legitimate applications on the Google Play Store, so worrying whether or not you’ve downloaded one that will put your data at risk shouldn’t be too worrisome as long as you stick to our best practices. To learn more about technology, security, and mobile strategies, call Total Tech Care today at 866-348-2602.

Tweet
Tags:
Security Google Mobile Devices
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Saturday, 23 November 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Categories

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Business Google Network Security Microsoft Internet Email Malware Backup Workplace Tips Innovation Data User Tips Computer Mobile Devices Hardware IT Services Disaster Recovery Android VoIP communications Business Continuity Smartphones Communication IT Support Smartphone Miscellaneous Mobile Device Small Business Network Browser Productivity Collaboration Quick Tips Cybersecurity Business Management Users Phishing Upgrade Managed IT Services Windows Outsourced IT Ransomware Data Backup Windows 10 Data Recovery Office Cloud Computing Server Save Money Passwords Windows 10 Virtualization Gadgets Saving Money Holiday Tech Term Social Media Chrome Managed Service Automation Microsoft Office Managed IT Services Computers Artificial Intelligence Facebook Operating System Cybercrime Internet of Things BYOD Wi-Fi Mobile Device Management Networking IT Support Hacking Health Spam Alert Information Covid-19 Office 365 Telephone Systems Information Technology Managed Service Provider Remote Bandwidth Social Engineering Recovery Employer-Employee Relationship Mobility Router BDR Mobile Computing Remote Monitoring Application Password Money App History Encryption Applications Big Data Data Breach Human Resources Law Enforcement Blockchain Private Cloud Paperless Office Mobile Office How To Managed IT Apps Office Tips Data Storage Patch Management Training VPN Government Remote Computing Data Security Marketing Mouse WiFi HaaS IT solutions Entertainment Website Budget Bring Your Own Device Data Management Work/Life Balance Infrastructure Voice over Internet Protocol Wireless Vulnerability Windows 7 Word Gmail Google Drive Settings Servers Two-factor Authentication Avoiding Downtime Flexibility Social Vendor Staff Software as a Service Telephone System Managed Services User Error Save Time Machine Learning Display Meetings Connectivity Remote Work USB Cleaning Employee/Employer Relationship Risk Management RMM Hacker Conferencing End of Support The Internet of Things Education Physical Security Lithium-ion battery Scam Safety Data Protection HIPAA Sports Redundancy Firewall Keyboard Vendor Management Virtual Reality Apple Current Events Network Congestion Virtual Assistant eWaste Document Management Telephony Managed Services Provider Authentication Solid State Drive Wireless Technology Samsung Database Downtime How to Printer Bluetooth Remote Workers Value Data storage Update Wearable Technology Automobile Processor Spam Blocking Electronic Medical Records Retail Hard Drives Instant Messaging Google Docs Hard Drive Robot Computing Infrastructure Excel Hiring/Firing Identity Theft IT Consultant Going Green Biometrics Virtual Desktop Humor Computing Battery Augmented Reality DDoS Shadow IT Fraud Legal Business Intelligence SharePoint Remote Worker Audit Internet Exlporer Worker IT Management Cryptocurrency Digital Signage Botnet Customer Service PDF Environment IT Plan Comparison Procurement Fax Server Proactive IT CES Workplace Strategy Unsupported Software Net Neutrality Virus Best Practice SaaS Help Desk YouTube Charger Black Market Content Management Printing Business Technology Unified Threat Management Computer Accessories Access Control Compliance OneNote Computer Care Bloatware Point of Sale Personal Search Cryptomining Supply Chain Management Virtual Private Network Cameras iPhone Netflix Two Factor Authentication Workforce Monitoring Batteries Root Cause Analysis Tablets Cables Entrepreneur Knowledge Music Windows 8.1 Digitize HBO Skype Project Management Windows Server 2008 R2 Files Nanotechnology Telecommuting Customer relationships Shortcut Data loss Chromecast Cortana Manufacturing Cost Management Leadership Digital Signature Troubleshooting Email Best Practices IT Assessment Outlook Start Menu Warranty Printer Server Social Networking Colocation Uninterrupted Power Supply Computer Tips Managed IT Service Screen Mirroring HVAC Security Cameras Loyalty Google Apps Biometric Security Monitor Analysis Books Virtual CIO OneDrive Frequently Asked Questions Peripheral Running Cable Mobile Administrator Windows 10s Devices Digital Security Cameras Using Data Cast Enterprise Content Management Memory 5G Reputation webinar Accountants Streaming Media Emergency Copiers Tip of the week MSP Quick Tip Content Professional Services Microchip Public Cloud Thought Leadership Tech Support Employer Employee Relationship Credit Cards Ergonomics Techology Password Management Smartwatch Laptop Assessment Password Manager Windows Server 2008 OLED Customers Multi-Factor Security Development PCI DSS Audiobook Tools Search Engine Virtual Machine Twitter Science Touchpad Television Business Mangement 2FA Fiber Optics NIST Employee Cabling Smart Tech Trending Consultant Messaging Policy Distributed Denial of Service Politics Analytics Hypervisor Customer Relationship Management Advertising Addiction Amazon Analyitcs Public Computer Recycling Dark mode Trend Micro Regulations Wiring Default App Programming Practices Notifications Transportation Best Available SMS WIndows 7 Procedure Saving Time Computer Fan Cache Rootkit Amazon Web Services Criminal dark theme Shopping Safe Mode Google Search Antivirus GDPR IT Infrastructure Relocation Workers Hosted Computing Benefits AI FinTech FENG Wireless Internet Bing Windows 8 Online Shopping IBM Social Network IT service Video Games File Sharing Worker Commute Flash Camera Investment Inventory Smart Technology Specifications User Employees Experience PowerPoint Employee/Employer Relationships Wire Windows Media Player Tablet Evernote Supercomputer Travel Windows 365 Domains Scalability Software Tips ISP Business Owner Sync Printers ROI Emails Millennials Video Conferencing Managing Stress Sales IaaS Bitcoin Maintenance Smart Office Shortcuts NarrowBand Wireless Charging

      Top Blog

      Taking a Vacation From Your Technology While On Vacation Can Actually Make Things Worse
      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      Read More
      QR-Code