Security News > 2023 > May > This legit Android app turned into mic-snooping malware – and Google missed it
Google Play has been caught with its cybersecurity pants down yet again after a once-legit Android screen-and-audio recorder app was updated to include malicious code.
Potentially tens of thousands of people downloaded the software before ESET researchers found the hidden malware and alerted Google, which pulled the app from its online store.
It's not clear precisely how long the malicious version of the recording app was available on Google Play nor how many people exactly were hit by it; ESET only said that the software had surpassed 50,000 downloads in Google's souk.
Stefanko noted in the report that the recording app remains available on some alternative and unofficial Android app markets, and that the developer has published several other Android tools, none of which contain malicious code.
We've been down this malware-laden road with Google Play many times before, but this one is particularly egregious given the fact the malware that slipped through the cracks has been found on Google Play already.
In 2017, Google's Play Protect on-device anti malware platform scored dead last in tests of its ability to detect malware compared to third-party Android malware detection platforms.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/05/24/a_legit_android_app_turned/
Related news
- Android malware 'Necro' infects 11 million devices via Google Play (source)
- New Octo Android malware version impersonates NordVPN, Google Chrome (source)
- Week in review: VMware ESXi zero-day exploited, SMS Stealer malware targeting Android users (source)
- New LianSpy malware hides by blocking Android security feature (source)
- Google fixes Android kernel zero-day exploited in targeted attacks (source)
- Google Patches New Android Kernel Vulnerability Exploited in the Wild (source)
- Google splats device-hijacking exploited-in-the-wild Android kernel bug among others (source)
- Cloud storage lockers from Microsoft and Google used to store and spread state-sponsored malware (source)
- Google: Gemini AI for Android processes sensitive data locally (source)
- Google says it's focusing on privacy with Gemini AI on Android (source)