Malware developer remains on Google Play despite being cited multiple times for malware

A phone with multiple app icons including Messages, Play Store, Phone, Settings and more

Google was routinely notified of malware-containing apps listed on the Play Store, but it routinely failed to capture the already specified malware code.
picture: east pop (stock struggle)

Google still fails to pick up malicious apps from listing on its App Store, but some of them seem to be Developers it He was cited as not even being kicked off the podium. Security software company Malwarebytes I mentioned Tuesday Four apps listed by the Mobile Applications Developer Group contain known malware used to steal users’ information. As of the time of reporting, the four apps are still listed on the Google Play Store.

Even worse, Malwarebytes wrote that the developer in question had been found to be spreading malware in their apps before, yet they could still list their apps in the main Google Play Store.

The apps are listed by the company’s group of mobile apps, whose listing on the Play Store includes the tagline “By using the Smart App, you ensure a strong and reliable Bluetooth pairing with any device.” Applications include:

  • Automatic bluetooth connection
  • Driver: Bluetooth Wi-Fi, USB
  • Bluetooth App Sender
  • Mobile Transfer: Smart Key

As of the reporting time Wednesday morning, the developer's malware-containing apps were still available on the Play Store.

As of the reporting time Wednesday morning, the developer’s malware-containing apps were still available on the Play Store.
screenshot: Kyle Bar / Gizmodo

Nathan Collier, Malwarebytes Malware Intelligence Analyst, wrote that when users first install Bluetooth Auto Connect, there is a delay of several days before it starts opening phishing sites in Chrome. These sites work in the background even if the device is locked and unlocked automatically when users unlock their phones. These phishing sites are said to include porn sites that lead to phishing pages or other sites that are spamming users with hacked messages and need to be updated.

The mobile app suite has been cited twice in the past for listing malware-infected apps, according to Collier. Other cybersecurity researchers have blogging About a previous version of Bluetooth Auto Connect. Two days after that blog and its subsequent delisting, the developers released version 3.0 on Google Play, which means that these malicious developers have not even received a testing period. The developers released the current version 5.7 of the app last December, which means that the malware is likely I stayed for nearly a year.

Google did not immediately respond to Gizmodo’s request for comment. Google has stated policy Against any application that includes malware of any kind, and the system claims to warn users if it detects a violation of its malware policy.

Collier writes that the first registry entry from the malware called Android/Trojan.HiddenAds.TBGTHB is logged a few hours after the app is installed, although the time before it is installed varies between different apps.

There have been a lot of other high-profile malicious app scandals on Google Play, including One Muslim prayer app Which was harvesting users’ phone numbers. Last year, Google Booting nine other apps from his store after researchers discovered that they were using malware to steal users’ Facebook logins.

Collier writes that delaying malware intrusion is a common way to get around App Store filters. It’s still not clear why Google can’t detect these apps, but another recent report from the cybersecurity company Note Bitdefender There were 35 other malicious apps listed on the Play Store which had more than 2 million downloads in total. The August report noted that once these apps are installed, they rename themselves and change their app icon in order to confuse users and avoid detection. my husband A previous report from July by Dr. Webb Note that a few dozen other malware-infected apps were modifications of known malware.

Google PLAr protection It is the company’s built-in malware defense software, and according to its own page, it scans over 100 billion apps on Google Play every day. But researchers previously noted that it routinely fails to detect malware, It ranks last among other security applications In 2021 tests by IT security researchers at AV Test.

#Malware #developer #remains #Google #Play #cited #multiple #times #malware

Leave a Comment

Your email address will not be published. Required fields are marked *