A recent report from McAfee highlights the ongoing challenge of Android malware, particularly for users who may have unknowingly installed 14 malicious apps from the Google Play Store. The report indicates that these apps have already been installed on over 300,000 devices, putting users at immediate risk of potential intrusion and data leakage by malicious actors.
The identified threat, known as Xamalicious, has reportedly been active since mid-2020. Individuals who installed these apps may still be vulnerable to the malware unless they have performed a thorough scan of their devices and removed any associated software. While Google has taken steps to remove the malicious apps from the Play Store, users who have previously installed them need to exercise caution in how they use their smartphones.
Some of the Android apps found to contain the dangerous malware include:
– Essential Horoscope for Android – 100,000 installs
– 3D Skin Editor for PE Minecraft – 100,000 installs
– Logo Maker Pro – 100,000 installs
– Auto Click Repeater – 10,000 installs
– Count Easy Calorie Calculator – 10,000 installs
– Dots: One Line Connector – 10,000 installs
– Sound Volume Extender – 5,000 installs
While these apps were distributed through the Play Store, McAfee notes that there are over 10 additional apps carrying the Xamalicious threat available on third-party app stores through APK files, which are not subject to Google’s oversight. Despite the challenges, Google has been increasingly proactive in warning users about potential risks associated with third-party apps.
Xamalicious is a significant concern as it can compromise infected devices, providing backdoor access to the malware. This access allows the malware to acquire permissions for installing other malicious apps. Additionally, the malware can execute various actions, such as collecting details about the phone, SIM card information, and firmware data. It can also gather the device’s location, IP address, and has the capability to alter the root status of Android phones.
To protect against such threats, users are advised to:
– Avoid downloading apps from third-party stores. If users choose to do so, it’s crucial to read reviews, check ratings, and conduct thorough research on the apps.
– Download only genuine apps from the official Google Play Store to minimize the risk of falling victim to malware threats.
In conclusion, the ongoing challenge of Android malware underscores the importance of user vigilance, caution, and reliance on trusted sources when downloading and installing apps on their devices.