Home Tech News mobile malware campaigns hit 250m downloads

mobile malware campaigns hit 250m downloads

- Advertisement -

The current report trending disclose how two massive mobile adware and data stealing campaigns that already have over 250m global downloads have been discovered by Check Point Research.

Both campaigns target smartphones running Android and exploit the mobile app development supply chain to infect devices and perform malicious actions.

- Advertisement -

The first campaign has been dubbed SimBad because most of the infected apps are simulator games and so far this mobile adware campaign already has 147m downloads across 210 infected apps on the Google Play Store.

SimBad makes smartphones almost unusable as it displays countless ads outside of the affected app with no visible way to uninstall it. To make matters worse, the malicious apps hide their icons to prevent them from being uninstalled and SimBad can also generate pages for multiple platforms and open them in a browser to perform spear-phishing attacks on users.

Operation Sheep

Check Point Research also discovered a group of Android applications that have been harvesting users’ contact information without their consent. The 12 different apps identified by the firm all use a data-scraping software development kit (SDK) and in total they have been downloaded 111m times.

The data stealing campaign has been dubbed ‘Operation Sheep’ and it is the first to exploit the Man-in-the-Disk vulnerability revealed by Check Point Research in 2018.

The SDK, called SWAnaytics, is integrated into seemingly innocent Android apps published on major Chinese app stores such as Tencent MyApp, Wandoujia, Huawei App Store and the Xiaomi App Store. After installation, SW Analytics silently uploads all of a user’s contact list to servers controlled by Hangzhou Shun Wang Technologies.

This means that the attackers behind the campaign could have theoretically collected the names and contact numbers of one-third of China’s entire population.

While Google was notified about SimBad and took action by removing the apps from the Play Store, Operation Sheep will likely be harder to stop because of how its creators used Android apps hosted on a number of Chinese app stores to steal user data.

Click Here To Visit The leading Education Platform r-bloggers Click Here To Read Latest News in Nigeria

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Must Read

Netflix to welcomes Original Evangelion in June

The iconic anime "Evangelion" will appear on the Netflix streaming service this summer. The platform called the exact release date of the series and published...

iPhone 11 may “share” energy with AirPods and Apple Watch

The current report as gathered by Macotakara website report, the next-generation iPhone will include an equivalent of the Wireless PowerShare feature of the Samsung...

How to use Google Pay to book train tickets

It is clear that Google’s UPI payment app, Google Pay (erstwhile Tez app), allows users to send and receive money, make cab payment and more....

How to Know if Someone Was Snooping on Your PC

You can take precautions against others using your PC, but sometimes, you don’t think it’s necessary. You can trust your family and friends. And...

Moment Huawei CFO Wanzhou Meng Show of His Apple Product

Report reveals how Huawei CFO Wanzhou Meng was arrested in December, the one-time heir apparent to the Chinese communications equipment giant and current focus...