Published: Sun, September 17, 2017
Sci-tech | By Carrie Guzman

A risky virus has attacked Google Play

A risky virus has attacked Google Play

Play Store has reportedly infected millions of phones with destructive malware, which is believed to stem from at least 50 apps on Google Play. And this has the same modus operandi!

Check Point Software found out that more than 50 Android apps on Google Play Store were malicious.

Here's how ExpensiveWall infiltrate and skim mobile device owner's money?

Check Point described ExpensiveWall as malware that sends premium SMS messages and registers victims to premium services without their knowledge or consent.

ExpensiveWall achieved go undeceted by Google's security procedures by using a technique known as packing, which involves adding malicious code to the infected apps. "Most users grant these permissions without thinking, especially when installing an app from a trustworthy source such as Google Play".

"While ExpensiveWall is now designed only to generate profit from its victims, a similar malware could be easily modified to use the same infrastructure in order to capture pictures, record audio, and even steal sensitive data and send the data to a command and control (C&C) server", added the firm in case we weren't anxious enough.

And once the hackers get any sensitive information, they can use it to blackmail the user.

Hurricane Irma: 8 dead in Fla. nursing home that lost power
Police officers are conducting welfare checks at 42 other nursing home and assisted living facilities across Hollywood. ELI PINA: After the hurricane , they were working on a generator because their AC broke because of Irma.

The malware sends fraudulent premium SMS messages, which is where the "expensive" bit comes in, and makes fake charges against user accounts. In June, Google removed malicious applications infected with the Ztorg Trojans which allowed hackers to root targeted devices.

Always keep to your smartphone updated with the latest firmware.

Google did not respond immediately to a request seeking comment on whether the company had notified Play customers who had downloaded the malware to urge them to uninstall the malware.

Javvad Malik, security advocate at AlienVault, said: "With so much money being flushed into mobile phones and the technology that surrounds them, it's no surprise criminals are targeting their malware efforts in this direction". They then managed to infect as many as 5,000 devices before ultimately being removed again after four days.

The virus is called "ExpensiveWall" in honor of one of the fraudulent applications, "Lovely Wallpaper", which allegedly offered a variety of background images for smartphones.

ExpensiveWall can only work when permissions are granted so it is important to check exactly what you downloading and agreeing to.

Like this: