Once an unsuspecting victim installs one of these apps, the dropper downloads and installs a malicious payload. Malware directly contained within an app on the Play Store might be detected by Google, but threat actors can avoid this detection by uploading apps to the Play Store that contain droppers. The researchers have named this newly discovered dropper variant “DawDropper.” Seventeen different apps that were previously available on the Google Play Store contain this dropper. The presence of this persistent threat on the Google Play Store requires that Android users remain vigilant so as to not unwittingly install apps bearing malicious payloads.Ī new analysis by the Trend Micro Mobile Team has revealed an additional set of apps that users should ensure aren’t installed on their devices, as they contain a dropper variant that installs the Octo malware. Malware found on the Play Store often steals sensitive information, including text messages, contact lists, banking credentials, and device information, from unsuspecting users. We fairly regularly write about newly discovered batches of malicious apps that went unrecognized as such long enough to infect hundreds of thousands to even millions of Android devices. Google is engaged in a never ending game of cat and mouse with threat actors on its Play Store who employ different techniques to sneak malware-ridden apps onto the app store.
0 kommentar(er)
