Tech News

Three hidden apps in the Play Store that are stealing data and it’s better to delete

Play Store applications hide viruses to steal information.

The Play Store of Google It asks for certain requirements so that the applications are in the stores, however, some manage to skip the cybersecurity protocols and represent a risk for the users.

[article_mb_code]

Three apps were recently detected that hide malware in their operation, stealing people’s data, such as passwords and bank accounts, despite offering services totally unrelated to these issues.

Apps with hidden malware

The virus being talked about is SharkBotwhich is capable of stealing login requests via a fake screen where those credentials should be put, but ultimately resulting in a scam and installation of the malware.

[article_mb_code]

Normally the technique of cybercriminals is to trick users with a link or a fake web page, but now they are attacking through the applications, which seem trustworthy.

Play Store applications hide viruses to steal information.
Play Store applications hide viruses to steal information.

At the moment the three apps that are being talked about are My finances tracker, Zetter Authenticator and Recover Audio, Images & Video. These can be downloaded without a problem from the Play Store, but after installing them they ask for an update through an APK, an installation file, outside that store and the infection appears there.

[article_mb_code]

The application takes control of the SMS, which are essential for the two-step verification of other platforms, because it is through them that the temporary access codes arrive.

For now, the malware is focused on attacking users in Europe, especially on their bank accounts, but that doesn’t mean they won’t spread. Also because another virus called Valtur was detected, which is in finance applications.

Its mode of operation is very similar to that of SharkBotactivating itself after download and installation via an APK file that is infected.

Here the best recommendation is to distrust an application that requests an update that is done externally from the Play Store, since the Google store is in charge of the process and thus provides a guarantee of cybersecurity.

Installing an external file from this platform is always a risk, even more so when it is not a recognized application or one that requests access as sensitive as personal information.

[article_mb_code]
Play Store applications hide viruses to steal information.
Play Store applications hide viruses to steal information.

Apps that would be spy in Qatar 2022

There are two platforms that are in question for the permissions they are requesting to go to qatar to see the World Cup, these are Ehteraz and Hayya.

The first is a covid-19 tracking app, while the second is official from the world so that people can access the metro for free and keep track of tickets to matches. So far everything normal.

However, they begin to raise doubts when they request permission to access phone settings, such as reading, deleting or changing all cell phone content, connecting to Wi-Fi and Bluetooth, having priority over other applications, preventing the phone from stay in sleep mode, location, make calls and disable the screen lock.

“The people who control the applications are given the ability to read and change things, and adjust them. They also have the opportunity to retrieve information from other applications if they have the ability to do so, and we believe they do,” he said. Øyvind Vasaasenhead of security at NRK.

Another cybersecurity expert, Martin Gravak, of Bouvethighlights that this application is key “if you go after your opponents, homosexuals or other people you don’t like, an application like this will make it much easier for you”, because it can access a phone and even track those around it .

Back to top button