50 apps on Google Play have infected 55 million devices

More than 50 apps found on the Google Play Store have infected about 55 millions of Android users with adware. This is something that seems to be the case for the fifteenth time.

According to the researchers her , Android XavirAd was detected in several apps on the Play Store. The adware displays annoying ads to the infected users and collects personal information sent to some remote server. So far, up to 55 million users are believed to have been infected.Google Play

Some of the 50 apps on Google Play that contain adware have over one million downloads. Overall, the number of downloads increases to about 55 million downloads.

Due to the adware, users see a full screen at regular intervals, even if the infected app is closed. These ads will direct you to install other apps.

The Google Play Store is full of complaints about these apps, as many users have noticed and reported scandalous behavior.

“However, XavirAd can do much more than that διαφημίσεων. Μετά την εκκίνηση της εφαρμογής, η βιβλιοθήκη του XavirAd επικοινωνεί με τον διακομιστή της και παίρνει τον κωδικό διαμόρφωσης. Ο διακομιστής ανταποκρίνεται με ρυθμίσεις για την εμφάνιση των διαφημίσεων πλήρους οθόνης και τις αποθηκεύει στις κοινές προτιμήσεις. Το domain api-restlet.com φέρεται να έχει καταχωρηθεί για αυτό το σκοπό”, επισημαίνουν οι ερευνητές της Sophos.

The adware then uploads another one .dex από το cloud.api-restlet.com, το οποίο συλλέγει δεδομένα από το τηλέφωνο του χρήστη, όπως τη διεύθυνση ηλεκτρονικού ταχυδρομείου για το λογαριασμό της Google, τη λίστας των εγκατεστημένων εφαρμογών, το αναγνωριστικό IMEI και το AndroidID, την ανάλυση οθόνης, τον κατασκευαστή, την επωνυμία και of the operating system, SIM card information and from applications. Data is encrypted and sent to the C&C server.

List of infected apps

Google Play

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).