© APA/AFP/KIRILL KUDRYAVTSEV
60 Apps im Google Play Store were using the malicious malware Goldoson contaminated. It was discovered by the security company McAfee. In a blog post informs the Mobile Research Team that these apps 100 million times have been downloaded. Not only through Google’s Play Store, but also through South Korea’s ONE Store.
The top 10 popular apps infected with the malware include the following:
- L.POINT with L.PAY
- Swipe Brick Breaker
- Money Manager Expense & Budget
- GOM Player
- LIVE Score
- Pikicast
- Compass 9
- GOM Audio – Music, Sync lyrics
- LOTTE WORLD Magicpass
- Bounce Brick Breaker
Data and GPS locations
Goldoson entered the apps via a third-party library. Hackers had integrated them into them. When developers then access the application, they unknowingly integrate the malware into their app.
Once Goldoson gets on the Android smartphone, she can Data collect and the GPS locatione of the users. Mac data could also be transferred via the devices that are connected to the Android phone via Bluetooth and WLAN. This data could be used to identify individuals.
The malware can also click on ads in the background and thus generate profits for the hackers. This could be expensive for smartphone owners.
Update or delete
Once installed, the app communicates with the remote server. This then determines how often Goldoson should click on ads or steal data. The data is then transmitted every 2 days.
McAfee have already informed Google and the developers of the apps. All affected apps have either been updated or banned from the Play Store. Android users should have available Updates install immediately. If an app is no longer in the Play Store, it should be deleted immediately.
