A thoughtful looking woman looking at her smartphone. Image: Getty/Guido Mieth
Sixteen Android apps downloaded by a combined total of more than 20 million users have been removed from the Google Play Store after they were found to contain malware that consumes data and drains batteries.
The malware was discovered by cybersecurity researchers at McAfee who reported them to Google. The apps are no longer available on Google Play, but users who have already downloaded the apps will still be infected unless they uninstall them.
Apps are designed to look like utilities, including flashlights, QR code readers, camera boosters, unit converters, task managers, and more.
The apps contained clicker malware – malware that secretly runs in the background and clicks on illicit advertising links to generate ad revenue.
While clicker malware may not be as dangerous to users as malware that steal passwords Where bank details, it still causes disturbances by draining the battery or using mobile data. The latter might cost the victims money if it takes over their data allowance and they are charged for it.
Also: How to secure your bank details and finances online
Some of the apps that have been identified as delivering clicker malware include apps called currency converter, picture vault, camera and more. The full list, including package names, has been detailed by McAfee’s mobile research team.
Some of the apps have been downloaded individually by millions of Android users.
For example, an app installed by over 5 million users claimed to allow them to find apps that consume a lot of data, although of course the malware inside the app was exactly the kind of thing that would consume data. data.
To avoid detection, the malware delays the initial start of malicious activity for at least an hour, then it detects whether the user is actively using their device or not, so that the malicious activity has no not occur when the device is examined. .
Users who have installed apps listed as containing click malware are recommended to uninstall them as soon as possible.
“Once you remove this app and other rogue apps, you can expect extended battery life and you will notice a reduction in mobile data usage while ensuring that your sensitive and personal data is protected against this and other types of threats,” said McAfee’s SangRyol Ryu.
ZDNET has contacted Google for comment but has not yet received a response at the time of publication.
LEARN MORE ABOUT CYBERSECURITY
