Millions of Android devices infected with dangerous malware

Accordingly, this malware not only penetrates unofficial application sources but also penetrates some popular applications on the Google Play store, even applications with tens of millions of downloads.

What is alarming is that Necro Trojan has the ability to automatically update and spread, turning infected devices into "hotspots" for spreading malware. Once it has penetrated a device, it can steal personal data, take control remotely, and cause other damage.

Necro Trojan Malware How is it transmitted?

Kaspersky researchers have discovered a serious security vulnerability in the mobile application ecosystem. Accordingly, a malicious software development kit (SDK) has been widely used, potentially infecting a wide range of applications with malware.

SDKs, which are tools that help developers integrate features such as advertising, analytics, and in-app payments, have become a "Trojan horse" that allows malware to penetrate deep into users' systems. The worrying thing is that if just one app using an SDK is infected, all of its users are at risk of being attacked.

In this case, the Necro Trojan malware operates silently and dangerously. It not only displays ads in the background to make illegal profits, but also installs other Android application packages (APKs) onto the user's device without permission.

In addition, Necro Trojan also uses a hidden WebView mini-browser to interact with paid services, resulting in users being unfairly charged for services they never used. This not only causes financial loss but also significantly reduces the user experience.

Security experts say that Necro Trojan is not a new threat. Previously, in 2019, this malware shocked the Android user community when it infected the CamScanner application, one of the most popular document scanning applications with more than 100 million downloads.

After a period of silence, Necro Trojan is back and more dangerous than ever, targeting a wide range of applications. Its ability to constantly adapt and evolve shows that it is a formidable opponent in the world of cybersecurity.

Kaspersky researchers have discovered the Necro Trojan malware in many popular apps on Google Play, including Wuta Camera and Max Browser, which have been downloaded more than 11 million times. These apps were infected with the malware from older versions and were removed by Google after receiving warnings. In addition, the Necro Trojan also appears in unofficial modifications of many other apps such as WhatsApp, Spotify and Minecraft, posing many risks to users.

Google has been quick to take action after reports that some apps on Google Play were infected with the Necro Trojan. The company immediately removed the malicious versions of the apps from its app store and confirmed that Android users are proactively protected by Google Play Protect, which detects and blocks malicious apps, even if they come from outside sources.

How Android users can protect their devices from Necro malware Trojan?

Necro Trojan is a dangerous malware that can steal personal information and harm users' systems. To protect your device from this malware and similar threats, follow these 4 simple steps:

1. Install strong antivirus software:While Google Play Protect is an initial layer of protection, Necro Trojan and other malware have proven to be quite capable of bypassing it. For complete protection of your Android device, add a solid layer of protection with a professional antivirus. With the ability to detect and remove a wide range of threats, antivirus software will give users peace of mind against malware and ransomware attacks.

2. Download apps from trusted sources:Google Play Store is considered the safest place for users to download applications. Therefore, users should download applications from Google Play Store and avoid downloading unofficial applications or strange links, especially links sent via SMS or email to protect their personal information and important data.

3. Check app permissions carefully:Be careful when granting permissions to apps. If an app requests access to features that seem unnecessary, such as location access for a simple game, the app may be suspicious. Avoid granting unnecessary permissions, and don't grant access unless absolutely necessary. These permissions can give malware access to sensitive user data.

4. Update your device and apps regularly:Regularly updating your phone and apps is important to stay safe. Updates often include security fixes that protect against newly discovered vulnerabilities. Outdated apps or systems can be easy targets for malware.

The discovery of Android malware like Necro Trojan reminds us that no platform is completely safe. Whether you are using Android or iOS, the best protection is to stay vigilant, keep your software up to date, and only download apps from trusted sources.