Over 1.5 million downloads of malicious file management apps on the Google Play Store have been discovered, including two spyware programs. These apps steal sensitive user data and send it to malicious servers in China.
On the Google Play Store, malicious file management apps that seem to be legitimate have been found to have accumulated a total of over 1.5 million downloads have been found. Two spyware programs from the same developer that had comparable dangerous behaviors were found by the cybersecurity company Pradeo. These apps stealthily sent private user information to malicious servers located in China while disguising themselves as file management utilities.
Security experts discovered that despite the applications’ claims to the contrary on the Google Play website, they did in fact capture very sensitive user data and send it to a number of malicious locations, mostly in China. Contact lists from the device itself as well as accounts related to it, such email and social networks, were among the stolen data. Apps gathered real-time user location, mobile country code, network provider name, and media assets including photos, audio, and video.
Over a million individuals downloaded “File Recovery & Data Recovery,” while over 500,000 downloaded “File Manager.” The same publisher, Wang Tom, published both applications.
To increase the popularity of their systems, the creators used a variety of fraudulent strategies. In order to engage in nefarious operations, these strategies required little user input and the impression of legitimacy. These programs harmed users without their knowledge since they ran invisibly in the background without permission.
The discovery of these harmful programs highlights the significance of being vigilant and exercising caution when installing software from app stores. Despite the security precautions the Google Play Store uses to reduce the appearance of hazardous apps, some evade the review process. To secure their devices and personal information, users are recommended to examine app permissions, read user reviews, and install reliable mobile security solutions.
These dangerous applications have been reported to Google, and it is anticipated that they will be immediately taken down from the Play Store to protect consumers from further harm. Consumers should be careful while utilizing mobile apps due to security issues.
Conclusion:
Malicious file management apps been downloaded over 1.5 million times from the Google Play Store. These file management applications transfer user data to malicious Chinese servers. The apps collected real-time user location, mobile country code, network provider name, and media content.
Over a million people downloaded the first app, “File Recovery & Data Recovery,” and over 500,000 people downloaded the second app, “File Manager.” These harmful apps used fraudulent strategies to increase their popularity, requiring little user input and the impression of legitimacy. Users should be vigilant and exercise caution when installing software from app stores. The apps have been reported to Google, and they are expected to be removed to protect consumers from further harm.
