Attacks by malware are not new. As hackers experiment with new methods to target people and steal their data and money, we frequently come across reports of new malware circulating on the internet. These malware attacks are more worrisome, though, when they are able to access our devices via reputable sources. For instance, the Google Play Store has more than 100 apps infected by a new malware that researchers have discovered.
‘SpinOK’, a new spyware that has infected over 100 applications available for download on the Google Play Store, has recently been discovered by security researchers at Dr. Web working with Bleeping Computer. The fact that these compromised apps have had an astounding total of over 400 million downloads makes this discovery particularly alarming.
Researchers have found that in order to lure users in, this trojan malware poses as an advertisement SDK and offers minigames with daily rewards. However, after being downloaded, the malware steals user data and sends it to a distant server.
According to the report by Doctor Web, “on the surface, the SpinOk module is designed to maintain users’ interest in apps with the help of mini-games, a system of tasks, and alleged prizes and reward drawings.”
The report also shows that the infected apps had varying degrees of malicious content, with some still having harmful software while others only having it in certain versions or having been completely removed from the store. However, given that these apps have been downloaded 421,290,300 times, a sizeable portion of Android users are at risk from cyberattack. While Google has been informed by the researchers, users are urged to exercise caution and avoid downloading any such apps.
Trojan-affected apps
The names of every one of the 101 Android-infected apps have also been made public by the Dr. Web report.trojan horse Spy.SpinOk SDK. Here is a list of the top 10 apps with this malware that have received the most app store downloads.
- Noizz: video editor with music (at least 100,000,000 installations).
- Zapya – File Transfer, Share (at least 100,000,000 installations; the trojan module was present in version 6.3.3 to version 6.4 and is no longer present in current version 6.4.1).
- VFly: video editor&video maker (at least 50,000,000 installations).
- MVBit – MV video status maker (at least 50,000,000 installations).
- Biugo – video maker&video editor (at least 50,000,000 installations).
- Crazy Drop (at least 10,000,000 installations).
- Cashzine – Earn money reward (at least 10,000,000 installations).
- Fizzo Novel – Reading Offline (at least 10,000,000 installations).
- CashEM: Get Rewards (at least 5,000,000 installations).
- Tick: watch to earn (at least 5,000,000 installations).
Users are urged to delete these apps if they have already downloaded them, even though Google was informed of the problem by the researchers and the apps were taken down from Google Play. Additionally, they are advised to update Google Play, including security updates, if they notice these apps on the app store.
Additionally, using antivirus software to safeguard your device from any such harmful malicious agents is strongly advised. As these updates include bug fixes and improved security while addressing current issues, such as bugs and crashes, they should also be applied to your device on a regular basis.
