Android users should beware of these 4 apps in Playstore. Why? According to Malwarebytes’ security researcher, Nathan Collier, these 4 apps lead to malicious phishing sites.
These applications are available in Google Play Store. Worryingly, every app accumulates more than 1 million downloads.
Stated applications are as below:
- Bluetooth Auto Connect – more than 1 million installations
- Driver: Bluetooth, Wi-Fi, USB – more than 10,000 installations
- Bluetooth App Sender – more than 50,000 installations
- Mobile transfer: smart switch – more than 1,000 installations
Delayed malicious behaviour
In the early stage, these applications work for their purpose. However, after a few days of usage, the app begins to show its true colours.
Malwarebyte said, “delaying malicious behaviour is a common tactic to evade detection by malware developers.”
After the first delay, these apps open phishing sites in Chrome. The contents vary: some are harmless sites used to produce pay-per-click, tricking unsuspecting users and adult content.
Deviously, these apps are opened in the background even on locked devices. When they unlock their phone, the Chrome tab opens with the latest site. This process repeats multiple times. Thus, the user’s history will be full of phishing sites.
Here are some examples of malicious sites:
The bad intention behind these 4 applications
After gathering the needed information, Malwarebyte concludes that these apps are more than just phishing sites. By installing, users are exposed to danger that crosses Google Play Protect’s detector policy.
Additionally, Malwarebyte says these apps carry harmful phishing sites, a malware named Trojan HiddenAds.
As observed, the listed applications are still available on Google Play Store.
Hence, Android users are urged to uninstall any of the applications to avoid being a victim of phishing.
Source: Malwarebytes Lab