Because of this strategy, the actual number of infections Bitdefender were able to trace is quite low – Google Play Apps used to kickstart the infection have only hundreds – or in some cases thousands – of downloads. That is much, much lower than many other malicious apps, which are designed to generate money for hackers by displaying fraudulent adverts on millions of devices.
The relatively minuscule number of downloads does enable the apps to stay undetected in the Google Play Store for much longer than other types of attacks.
If you are unlucky enough to be duped by the app and if an attack then takes place it’s pretty serious as the hacker then gains access to crucial parts of your handset, including core settings, screen recording, device usage, and inactivity times. It can even turn down the volume of the phone, block calls or messages.
With these sheer level of access, attackers can do anything from credential stealing, information exfiltration, to money transfers and blackmailing.
Published at Sun, 17 May 2020 06:00:00 +0000