Login | Register 
Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Infected Applications Removed from Google Play Store

Total Tech Care Blog Security
0 Comments
Infected Applications Removed from Google Play Store

We all download apps. There are literally millions of apps to choose from and sometimes nefarious developers can get their application published with ulterior motives. A situation has just happened as Google has removed twenty-two apps that were found to contain automated click-fraud scripts from the Google Play Store. We’ll take a short look at what these developers were up to, and how the fraudster would affect you if you were one of the two million users that happened to download these apps.

What Apps?
First, we’ll start with a complete list of the apps that had been infested with this nefarious code:

  • Sparkle FlashLight
  • Snake Attack
  • Math Solver
  • ShapeSorter
  • Tak A Trip
  • Magnifeye
  • Join Up
  • Zombie Killer
  • Space Rocket
  • Neon Pong
  • Just Flashlight
  • Table Soccer
  • Cliff Diver
  • Box Stack
  • Jelly Slice
  • AK Blackjack
  • Color Tiles
  • Animal Match
  • Roulette Mania
  • HexaFall
  • HexaBlocks
  • PairZap

What Did These Apps Do?
SophosLabs found a cache of apps that feature what they call “Andr/Clickr-ad” malware. These applications are engineered with maximum flexibility in mind. They could contact a common attacker-controller server to download what is called an ad-fraud module. It does this every 80 seconds. The malware simply opened a non-visible window and would repeatedly click on ads, making the network look like it was getting more traffic, fraudulently enhancing the developers’ revenue.

No specific ad network was specified by Sophos, but users who had downloaded these applications would see a decrease in the battery life and/or an increase in the amount of data their device would use. One strange part of this is that some of the ad traffic was able to identify itself as from coming from iPhones, despite this appearing on Android-only apps. They came from “Apple models ranging from iPhone 5 to 8 Plus and from 249 different forged models from 33 distinct brands of Android phones.” This ploy was used as a way to increase revenues further as some advertisers will pay a premium to get their ads onto Apple devices. iOS versions of the apps, largely by the same developers, didn’t have the malicious code integrated.

Download Legit Apps
How can you go about making sure that you aren’t part of this problem? Download legitimate applications. Some of the best ways to make sure the apps you are downloading are legit, include:

  • Read a lot of reviews - Much of the information you will need to see the legitimacy of an application can be found in the review of the app in the store. If you make a point to read eight or more reviews, you will quickly get a good idea about how functional the application is.
  • Check app permissions - Applications need permission from a user to use the core functions of the phone. If the application in question tends to need access to functions that it shouldn’t, you should be skeptical about the application.
  • Check the terms and conditions - Most people don’t go through the terms and conditions of anything, let alone an application for their smartphone. Even if you do make a point to read them, the amount of legalese found is akin to a lullaby or a warm glass of milk. The problem for users is that there is a lot of good information about the applications, and specifically how it uses data. If you do set aside some time to read about it, check out some language that is relevant to the way you use the application.
  • Research the developer - Nowadays, software development is filled with people that are looking to make a name for themselves. This type of ambition can lead to bad decision making. If you take some time to do some basic research about the developer of an app you have reason to question, you’ll likely find the truth of whether they can be trusted or not. If they want to be known, they likely promote their work via social media, so, start there.

Android has millions of legitimate applications on the Google Play Store, so worrying whether or not you’ve downloaded one that will put your data at risk shouldn’t be too worrisome as long as you stick to our best practices. To learn more about technology, security, and mobile strategies, call Total Tech Care today at 866-348-2602.

Tweet
Tags:
Security Google Mobile Devices
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 30 April 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Categories

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Google Business Network Security Microsoft Internet Email Malware Workplace Tips Backup Innovation User Tips Data Computer Mobile Devices Hardware IT Services Android VoIP Disaster Recovery communications Business Continuity IT Support Smartphones Communication Miscellaneous Smartphone Mobile Device Network Browser Small Business Productivity Collaboration Cybersecurity Quick Tips Business Management Users Phishing Windows Upgrade Managed IT Services Data Backup Outsourced IT Ransomware Windows 10 Office Cloud Computing Server Save Money Data Recovery Passwords Windows 10 Saving Money Holiday Gadgets Chrome Virtualization Tech Term Social Media Microsoft Office Managed Service Automation Managed IT Services Cybercrime Artificial Intelligence Operating System Facebook Computers Internet of Things BYOD Mobile Device Management Health Networking Wi-Fi IT Support Hacking Alert Managed Service Provider Spam Office 365 Remote Information Telephone Systems Information Technology Covid-19 Recovery Employer-Employee Relationship Bandwidth Social Engineering Mobility Router BDR Application Human Resources Password Remote Monitoring Money Big Data Data Breach Encryption Applications App History Mobile Computing Law Enforcement Private Cloud Managed IT Data Storage Remote Computing Patch Management Mobile Office Apps Blockchain Paperless Office Office Tips Training Government How To VPN Two-factor Authentication Bring Your Own Device Vulnerability Data Management Mouse Work/Life Balance Windows 7 HaaS Word Servers Google Drive Flexibility Wireless Data Security Marketing Infrastructure WiFi Voice over Internet Protocol Gmail Avoiding Downtime IT solutions Entertainment Website Settings Budget USB Firewall Data Protection Employee/Employer Relationship Save Time RMM Virtual Reality Apple Conferencing Social Cleaning Scam User Error Meetings End of Support Staff Vendor Management Software as a Service Telephone System Education Physical Security Machine Learning Safety Risk Management Hacker Connectivity Remote Work HIPAA Sports Redundancy The Internet of Things Keyboard Vendor Lithium-ion battery Managed Services Display Remote Worker Document Management Fax Server Wireless Technology Hiring/Firing Hard Drive Cryptocurrency Solid State Drive How to IT Consultant Downtime SaaS Data storage Humor Computing Comparison Automobile CES Network Congestion Business Intelligence eWaste Computing Infrastructure Audit Content Management Going Green Worker Business Technology IT Management Access Control Digital Signage Botnet Virtual Assistant Battery IT Plan Authentication Wearable Technology Retail Hard Drives Shadow IT Procurement Instant Messaging Legal Excel Unsupported Software Workplace Strategy Robot Net Neutrality Internet Exlporer Virus Charger Update Biometrics Help Desk Printing Unified Threat Management Virtual Desktop Computer Accessories Compliance PDF OneNote Computer Care Google Docs DDoS Current Events Identity Theft Proactive IT Managed Services Provider Telephony SharePoint Samsung Best Practice Database YouTube Printer Bluetooth Black Market Value Remote Workers Augmented Reality Fraud Customer Service Electronic Medical Records Processor Environment Spam Blocking Search Screen Mirroring Computer Tips Smart Tech Antivirus Loyalty Managed IT Service Trending Security Cameras Windows 8 Frequently Asked Questions Virtual CIO Addiction iPhone OneDrive Amazon Books Biometric Security Peripheral Recycling IT service Mobile Windows 10s Wiring Cast Digital Security Cameras Practices Using Data 5G Tablet Tip of the week Cache Files webinar Copiers Amazon Web Services Emergency Quick Tip Criminal Chromecast Domains Employer Employee Relationship Professional Services Safe Mode Public Cloud GDPR Ergonomics Hosted Computing Assessment Smartwatch OLED Windows Server 2008 Wireless Internet Colocation IaaS Development Online Shopping Uninterrupted Power Supply Maintenance PCI DSS Virtual Machine Bloatware Tools File Sharing Camera 2FA Inventory Monitor Television Fiber Optics Specifications Employee Cabling Tablets Wire Consultant Messaging Evernote Policy Analytics Hypervisor Travel Entrepreneur Printers Dark mode Reputation Public Computer Trend Micro Millennials Streaming Media Transportation Default App Content Regulations Smart Office Best Available SMS Wireless Charging Tech Support Shortcut Computer Fan Procedure Laptop Rootkit Saving Time Cost Management Techology WIndows 7 Virtual Private Network dark theme Customers Shopping Workforce Social Networking Google Search Benefits IT Infrastructure Audiobook Workers AI Cables FENG FinTech Touchpad Bing Project Management Nanotechnology Running Cable IBM Social Network Telecommuting Smart Technology Investment Memory Politics Flash Advertising Cortana User Employees Digital Signature PowerPoint Employee/Employer Relationships Windows Media Player Warranty Software Tips Windows 365 Supercomputer Notifications ISP ROI Sync HVAC Emails Video Conferencing Google Apps Managing Stress Sales Analysis Bitcoin Shortcuts Science Administrator Point of Sale Devices Relocation Personal Cryptomining Cameras Two Factor Authentication Enterprise Content Management Netflix Supply Chain Management Video Games Root Cause Analysis Monitoring Accountants Batteries MSP Microchip Worker Commute HBO Windows 8.1 Thought Leadership Distributed Denial of Service Knowledge Digitize Credit Cards Customer Relationship Management Music Windows Server 2008 R2 Analyitcs Experience Skype Password Management Password Manager Scalability Data loss Customer relationships Multi-Factor Security Programming Search Engine Business Owner Outlook Email Best Practices Twitter Leadership IT Assessment Troubleshooting Manufacturing NarrowBand Printer Server Start Menu NIST Business Mangement

      Top Blog

      Taking a Vacation From Your Technology While On Vacation Can Actually Make Things Worse
      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      Read More
      QR-Code