"Cybersecurity Researchers Find Several Google Play Store Apps Stealing Users Data"
In May, cybersecurity researchers from Dr. Web discovered several apps on the Google Play Store with built-in adware and information-stealing malware. The researchers noted that the most dangerous of these apps are spyware tools capable of stealing information from other apps’ notifications, mainly to capture one-time two-factor authentication (2FA), one-time passwords (OTP), and take over accounts. Most apps containing the allegedly malicious code had been removed by the Play Store, but several remain online. One is PIP Pic Camera Photo Editor, a malicious app with over a million downloads that reportedly steals people’s Facebook credentials. Other malicious apps spotted by the researchers (including those that are no longer online) are Wild & Exotic Animal Wallpaper, an adware app that changed its name to SIM Tool Kit after installation that currently has 500,000 downloads, and Magnifier Flashlight, an adware app with 10,000 downloads. The researchers also discovered ZodiHoroscope, a Facebook credential-stealing app. The researchers stated that while apps stealing apps’ notifications content had overall decreased in May, the activity of advertising trojans had increased throughout the month. The researchers noted that in May, Android.Spy.4498, which steals information from other apps’ notifications, was again the most common mobile threat. Advertisement trojans from the Android.HiddenAds family also remained among the most widespread Android threats.