Google Play has been spreading advanced Android malware for years

by
Dan Goodin
from Ars Technica - All content on (#52VCF)
android-malware.jpg

Enlarge (credit: portal gda / Flickr)

Hackers have been using Google Play for years to distribute an unusually advanced backdoor capable of stealing a wide range of sensitive data, researchers said on Tuesday.

Researchers from security firm Kaspersky Lab have recovered at least eight Google Play apps that date back to 2018, a Kaspersky Lab representative said, but based on archive searches and other methods, the researchers believe malicious apps from the same advanced group seeded Google's official market since at least 2016.

Google removed recent versions of the malware shortly after the researchers from Kaspersky, and earlier fellow security firm Dr. Web, reported them. Apps from earlier were already removed, and it's not clear what prompted the move. Third-party markets have also hosted the backdoored apps, and many of them remain available.

Read 11 remaining paragraphs | Comments

index?i=E7X-E1ycrag:3oLdLJgWODY:V_sGLiPB index?i=E7X-E1ycrag:3oLdLJgWODY:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments