Cybersecurity researchers have discovered that more than 100 Android apps available on the Google Play Store contain spyware that can steal your personal data and download files to your device without your knowledge. These apps have unfortunately been installed more than 400 million times.
More than a hundred, according to computer security expertsandroid apps Currently available on Google Play Store a Malware Named SpinOk. The latter can access your files and clipboards to send your confidential information to a remote server.
Over 421 million downloads
Spyware hides in an advertising SDK. The latter is used by 101 Android apps that appear legitimate and offer users mini-games, tasks or rewards. In fact, these apps (intentionally or unintentionally) collect sensitive data from infected devices.
Called SpinOk, the spyware first checks whether the device is in a virtual sandbox-like environment, which can be used by researchers to study its behavior. Connects to a remote server to download a list of URLs that display the mini-games users expect.
While the latter is running, SpinOk works in the background to perform several malicious actions, such as listing files in directories and downloading them. Spyware can thus steal images, videos, documents or bank data stored on the device. It can modify the clipboard to intercept passwords, credit card numbers or cryptocurrency payments.
Which apps are affected?
According to researchers at Dr.Web, the company that discovered the spyware, the most downloaded Android apps were affected:
- Noizz: Video Editor with Music (100 million installs),
- Zabya – file transfer, sharing (100 million installs; Trojan existed up to versions 6.3.3 and 6.4, but not in version 6.4.1),
- VFly: Video Editor & Video Maker (50 Million Installs),
- MVBit – MV video status maker (50 million installs),
- Biugo – Video maker and video editor (50 million installs),
- Crazy Drop (10 million installs),
- Cashzine – Get Cash Reward (10 Million Installs),
- Fizzo Novel – Offline Reading (10 Million Installs),
- CashEM: Earn Rewards (5 Million Installs),
- Tik: Watch to earn (5 million installs).
All of these apps except Tick have been removed from Google Play, indicating that Google has received reports of spyware and has removed harmful apps until developers submit a clean version. Check out the full list of spyware-affected apps here At this address.
If you have installed any of the apps mentioned above, uninstall it immediately and check if other apps are asking for excessive or suspicious permissions like microphone, clipboard or file access. You can also use Antivirus for Android to scan your device for potential malware.
A year after its launch, this Android app has been secretly recording your conversations
In general, be careful when installing a new app on your Android smartphone to avoid falling prey to spyware like SpinOk. Read other users’ reviews carefully, check the developer’s reputation and avoid apps that have few downloads or are recent. We advise you to regularly update Android and your apps to benefit from the latest security patches.
Dr. Webb
