Security News > 2023 > April > Cybercriminals charge $5K to add Android malware to Google Play

Malware developers have created a thriving market promising to add malicious Android apps to Google Play for $2,000 to $20,000, depending on the type of malicious behavior cyber criminals request.

The exact price for these services is negotiated on a case-by-case basis on hacker forums or Telegram channels, allowing cybercriminals to customize malicious Android apps with their own malware or functionality.

Being able to add a malicious Android app to the trusted Google Play store provides a wide base of targets to steal credentials and data, conduct financial fraud, or deliver unwanted advertisements.

In a new report by Kaspersky, researchers illustrate how threat actors offer services that promise the addition of Android malware apps to Google Play.

Kaspersky reports that apart from Google Play loaders, which sell for an average of roughly $7,000, cybercriminals also sell services like malware obfuscation for $8 to $30 or "Clean" Google developer accounts that cost $60. These malicious but innocuous-looking apps are published on Google Play but include the ability to fetch malicious code via a later update.

To increase the number of malware installations via the Google Play loaders, the cybercriminals may also offer to run Google Ad campaigns on account of their customers.

News URL

https://www.bleepingcomputer.com/news/security/cybercriminals-charge-5k-to-add-android-malware-to-google-play/