Security experts alert the Trendmicro agency to detect at least nine Android applications, some considerably popular, with malware (malicious software) inside. They are apps to remove immediately!
If they are installed on your smartphones or tablets, it is advisable to uninstall them because, although Google has already taken the necessary steps in the Play Store, it is likely that they are still installed on several mobile devices.
The 9 applications infected with malware
- Shoot Clean-Junk Cleaner, Phone Booster, CPU Cooler
- Super Clean Lite- Booster, Clean & CPU Cooler
- Super Clean-Phone Booster, Junk Cleaner & CPU Cooler
- Quick Games-H5 Game Center
- Rocket Cleaner
- Rocket Cleaner Lite
- Speed Clean-Phone Booster, Junk Cleaner & App Manager
- H5 gamebox
These are the apps that, if installed, should be removed as soon as possible. They have more than half a million installations, being present in the Google Play Store since 2017 and some with very positive reviews.
Note that a good part of the apps infected with malware pretends to be performance optimizers and RAM managers. They are precisely the worst kind of applications you can ever install on Android devices.
Not only is its action imperceptible in most cases, but it will slow down your smartphone, as they tend to use many features of the phone. As far as legitimate applications are concerned, this is still a very popular category.
The threat posed by apps with malware for Android
The targeted applications found adulterated software that allows the hacker to obtain remote access to the phone or tablet in question after installation on the mobile device. Something that also gives them the possibility to implement techniques for data theft.
This attack vector also allows the hacker to download other applications – without the user’s knowledge – to the smartphone, in addition to being able to execute them remotely. In other words, from an infected app, they can install others for equally harmful purposes, usually to display advertisements on the victim’s mobile phone.
According to the source, the malware also forces the publication of positive reviews (reviews) for various apps on the Google Play Store to influence their rating and try to more users to install these applications.
The user was never warned
According to Trendmicro, after installing one of the apps infected with malware, the user did not suspect the invasion of his mobile device. At no time did the malware signal its hidden activities.
Being able to mask its actions, the activities performed by the malware remained hidden and, through the service “com.adsmoving.MainService”, present in the package “com.adsmoving”, established a connection with a remote server used to register the new installation of the application on the victim’s device and inject advertising.
From here, the malware starts showing intrusive advertising – the main source of revenue for those responsible.
Finally, Trendmicro does not include Portugal among the countries most affected by malware. Still, with the Play Store applications, its harmful effects may have also been felt here.