Kaspersky warning: These Android applications are infected with malware
How is new malware released?
The Fleckpe malware is a subscription trojan distributed through Google Play in smartphone photo-editing apps and wallpaper packs. What’s worse is that although this malware was recently detected, it is now known that it has been actively operating for a year and has infected more than 620,000 devices so far.
How does the new malware sign people up for paid subscriptions?
Once you download an app on your Android that is infected with Fleckpe, the app will access your notifications and find the verification code.
A malicious code starts running on your device and contacts the hackers through a command and control server. Hackers then send your device’s mobile country code and mobile network code, which are used to determine where you live and which mobile operator you subscribe to.
Once this information is obtained, the hacker sends a paid subscription page that is opened by the Trojan in an invisible browser. It then signs you up for a paid subscription using the code it received after accessing your notifications. This subscription is confirmed by the malware without it being visible to the user because the application itself works in a completely normal way.
Which apps should be removed?
If you have any of the apps listed below on your Android device, you should remove them immediately. All of these were infected with Fleckpe malware and the Google Play Store removed them from the platform.
– Beauty Camera Plus
– Beauty Photo Camera
– Beauty Slimming Photo Editor
– Fingertip Graffiti
– GIF Camera Editor
– HD 4K Wallpaper
– Impressionism Pro Camera
– Microclip Video Editor
– Night Mode Camera Pro
– Photo Camera Editor
– Photo Effect Editor
How can we protect ourselves from these malicious applications?
Although these apps have been discovered and removed from the Google Play Store, you still need to be cautious because you never know what apps out there might be infected with malware. It is necessary to follow some tips to prevent your Android device from being infected with malware.
To avoid malware infection and subsequent financial loss, it is recommended to always make sure that the applications you download are from a legitimate source. Android users should always download applications from the Google Play store and remember to check the feedback about the application before downloading. If it seems that the application has a lot of negative reviews or has very few comments, it is better to avoid downloading that application.
Make sure your devices, operating systems and apps are up to date
Always keep your devices, operating systems and applications up to date. You should always make sure you have the latest version of the software available. These updates have stronger security features, so the newer the software, the better protected your Android device will be.
To check if your Android device needs an update, you should:
– Refer to the settings section
– At the bottom of this page, tap on Software Update
– Then tap on Download and Install
– You will see your update status. Follow all the steps on the page
To check for Android app updates, you should:
– Open the Google Play application
– At the top left, tap on the icon
– Tap on Manage applications and devices
– For apps that have updates, tap Update
It should be noted that the settings may differ depending on the manufacturer of your Android phone
Have good antivirus software on all your devices
This incident is another reminder of the necessity of having a good antivirus software on your devices because malicious apps can be found on any platform, even if it’s a legitimate app like the Google Play Store. The presence of antivirus software on your devices helps to identify this type of Trojan in an application that you may have downloaded and may not have been removed from the Google Play Store.
Source: ISNA