Security News > 2021 > December > Android malware infected more than 300,000 devices with banking trojans

The initial apps in Google Play were safe, but the creators found a way around the Play Store's protections to install malware on Android users' devices.

A November report from ThreatFabric revealed that more than 300,000 Android users unknowingly downloaded malware with banking trojan capabilities, and that it bypassed the Google Play Store restrictions.

The attackers were careful enough to submit an initial version of their applications, which did not contain any download or install functionality, and later updated the applications on the Google Play Store with more permissions, allowing the download and installation of the malware.

Google Play is the major repository for Android applications, and any developer can submit his or her own application to the Play Store.

The whole review process applied to application submissions for the Google Play Store makes it really hard for cybercriminals to spread malware via the platform though it is unfortunately still possible.

"A study released in November 2020 by the NortonLifeLock Research Group revealed that among 34 million APKs spread on 12 million Android devices, between 10% and 24% of it could be described as malicious or potentially unwanted applications, depending on different classifications. Of those applications, 67% were installed from the Google Play Store. The researchers mention that"the Play market is the main app distribution vector responsible for 87% of all installs and 67% of unwanted installs.

News URL

https://www.techrepublic.com/article/android-malware-infected-more-than-300000-devices-with-banking-trojans/#ftag=RSS56d97e7