For example, McAfee Labs researchers found a malicious app posing as a legitimate health app in the Amazon Appstore. While not as popular as the Google Play Store, the Amazon Appstore works on the best Android tablets as well as cell phones.
Now that Google is working hard to lock down the Play Store, hackers are turning to third-party app stores as a means of distributing malicious apps. I would not be surprised if they attempt something similar with Samsung's Galaxy Store in the future.
Here is everything you need to know about this new malicious app and what to do next to remove it from your phone if it is installed, along with tips and tricks to keep yourself safe from Android malware
Ble.
As reported by BleepingComputer, the app in question is called BMI CalculationsVsn and until recently was advertised as a simple body mass index (BMI) calculator.
Upon opening the app, it appears fairly simple, with a single page where users can enter their weight and height to calculate their BMI. However, while its user interface appears to be a standard health app, it has various malicious activities going on in the background.
In their report on the matter, McAfee researchers explain that the app begins recording the user's screen each time the user clicks the “Calculate” button to find out his or her BMI. A pop-up request to grant the necessary permissions for screen recording appears, and when the user taps “Start now,” the malicious app begins recording.
McAfee sees this feature as likely to be used to obtain gesture passwords and other sensitive app data. However, the company's researchers found that the app's developer, PT Visionet Data Internasional, is not prepared to use this feature because the app does not upload the captured mp4 video files to a command and control (C2) server The app was not ready to take advantage of this feature. [But at the same time, the malicious app is also able to scan the victim's device and obtain a list of other apps installed. This information could be used to identify potential targets or plan more sophisticated attacks. Similarly, the BMI CalculationsVsn app also collects all text messages received from infected phones. This is likely done to obtain one-time passwords (OTPs), verification codes, or other sensitive information sent via text.
The app itself was uploaded to the Amazon Appstore earlier this October. It started out as a screen recording app, but the developer changed course midway through the development cycle and changed it to a BMI calculator with the original screen recording feature enabled. The app's icon was also changed to reflect this.
Fortunately, upon discovering the malicious app, McAfee contacted Amazon and the app was subsequently delisted. However, if you have installed it on your Android phone or tablet, you will need to manually remove it from your device.
Malicious apps have a habit of appearing on official app stores like the Google Play store and now the Amazon Appstore, so be very careful when downloading new apps.
This means checking ratings and reviews, but these can be faked, so it is always a good idea to look for outside reviews or video reviews where you can see the app in question in action. You should also check to see if the developer of the app is legitimate. A good way to avoid installing malicious apps on your Android device is to stick to known and trusted apps, which often appear in the top charts of each app store.
The first line of defense against Android malware is Google Play Protect, which comes preinstalled on most Android devices. This free security app scans existing and newly downloaded apps for malware, even if they were not downloaded from the Play Store. But for further protection, I highly recommend using one of the best Android antivirus apps alongside Google Play Protect. These apps are updated more frequently and often include other useful extras like password managers and VPNs.
Hackers, scammers, and other cybercriminals have been using malicious apps as a means of infecting people with malware for years and will not stop doing so anytime soon. Therefore, security savvy and caution should be exercised when installing new apps on Android smartphones and tablets.
.
Comments