Android file managers peppered with malware, get rid of them now!

Once again play store is at the center of a storm: this time he would indirectly contributed to the diffusion of Sharkbot.

Android malware

To affirm it is BitDefenderwhich informed its readers that for some time the Google platform, obviously without its knowledge, was being exploited to spread the well-known malware.
This time Sharkbot it was spread using some apps which were presented as a harmless file manager for Android. Unfortunately, once the app was installed, and the required permissions granted, the field was left free for malicious software.

Specifically, in this session, they are three apps involved, all downloaded even thousands of times: X-File Manager by Victor Soft Ice LLC (downloaded ten thousand times), FileVoyager by Julia Soft Io LLC (downloaded by five thousand users) e LiteCleaner M (downloaded “only” a thousand times). Obviously after the reports of the case all three apps were promptly removed from Play Store. We remind you that if you have already downloaded them, it is imperative to uninstall them immediately and use an antivirus as soon as possible.

For those who have never heard of him, this isn’t the first time Sharkbot makes its appearance: specifically it is a banking trojancapable of creating fake login screens to the smartphone owner’s online bank accounts in order to capture the information needed to access the current account, which was then sent to the Trojan developers. These, at that point, had everything necessary to be able to withdraw the “cash” present.

At the beginning we said that Play Store contributed indirectly. This is because, for bypass security systems of the Google Store (capable of detecting the presence of malicious software), the authors behind this act had devised a very simple but equally effective system: the three named apps did not carry the malwarebut rather it they downloaded remotely, from other sites, once installed on the smartphone and after having requested and obtained the necessary authorizations from the owners of the devices. Unfortunately it is not the first time that the Google Play Store has been used as a “via” for these maneuvers: in some cases reaching millions of people around the world.

For our part, the only advice we feel we can give is to install an antivirus (here is our article on the best antivirus for Android), avoid suspending its activity regardless of what we are doing and pay attention to which permissions we grant to the Apps that we install on our devices.

Leave a Comment

Your email address will not be published. Required fields are marked *