Android: Malware found in 60 Android apps with 100 million downloads, but why users in India are ‘safe’ – Times of India
McAfee’s Mobile Research Team claims to have found more than 60 applications containing third-party malicious library. The software library has been named Goldoson. These apps have more than 100 million downloads confirmed in the ONE store and Google Play app download markets in South Korea. The software library that collects lists of apps installed, and a history of Wi-Fi and Bluetooth devices information, including nearby GPS locations. The library is also said to have the functionality to perform ad fraud by clicking advertisements in the background without the user’s consent.
Android users in India need not worry
Since these apps are in South Korea, so users in other regions, Including India, do not need to worry.
What apps do
The Goldoson library registers the device and gets remote configurations at the same time the app runs. The library name and the remote server domain varies with each app and it is obfuscated. The name Goldoson is after the first found domain name.
Google has removed the apps
McAfee Mobile Security said that it reported the discovered apps to Google, which took prompt action. Google has reportedly notified the developers that their apps are in violation of Google Play policies and fixes are needed to reach compliance. Some apps were removed from Google Play while others were updated by the official developers. Users with Android 11 and above are more protected against apps attempting to gather all installed apps.
What users need to do
While the malicious library has not been made by developers buy by someone else, the risk to installers of the apps remains. So, it is important that all those Android smartphone users who have apps on their phones delete them. Users are encouraged to update the apps to the latest version to remove the identified threat from their devices.
Android users in India need not worry
Since these apps are in South Korea, so users in other regions, Including India, do not need to worry.
What apps do
The Goldoson library registers the device and gets remote configurations at the same time the app runs. The library name and the remote server domain varies with each app and it is obfuscated. The name Goldoson is after the first found domain name.
Google has removed the apps
McAfee Mobile Security said that it reported the discovered apps to Google, which took prompt action. Google has reportedly notified the developers that their apps are in violation of Google Play policies and fixes are needed to reach compliance. Some apps were removed from Google Play while others were updated by the official developers. Users with Android 11 and above are more protected against apps attempting to gather all installed apps.
What users need to do
While the malicious library has not been made by developers buy by someone else, the risk to installers of the apps remains. So, it is important that all those Android smartphone users who have apps on their phones delete them. Users are encouraged to update the apps to the latest version to remove the identified threat from their devices.
For all the latest Technology News Click Here
Denial of responsibility! TechAI is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.