Digital transformation

Millions of Android devices infected with dangerous malware

Phan Van Hoa October 6, 2024 07:50

Security experts from the famous security company Kaspersky (Russia) have discovered an extremely dangerous new variant of the Necro Trojan malware, infecting popular applications with tens of millions of downloads.

Accordingly, this malware not only penetrates unofficial application sources but also penetrates a number of popular applications on the Google Play store, even applications with tens of millions of downloads.

Ảnh minh họa
Illustration photo.

What is alarming is that Necro Trojan has the ability to automatically update and spread, turning infected devices into "hotspots" for spreading malware. Once it has penetrated a device, it can steal personal data, take control remotely and cause other damage.

Necro Trojan malware How is it transmitted?

Kaspersky researchers have discovered a serious security vulnerability in the mobile application ecosystem. Accordingly, a malicious software development kit (SDK) has been widely used, potentially infecting a series of applications with malware.

SDKs, which are tools that help developers integrate features such as advertising, analytics, or in-app payments, have become a "Trojan horse" that allows malware to penetrate deep into users' systems. The worrying thing is that if just one application using the SDK is infected, all users of that application are at risk of being attacked.

In this case, the Necro Trojan malware operates silently and dangerously. It not only displays ads in the background to make illegal profits but also installs other Android application packages (APKs) onto the user's device without permission.

In addition, Necro Trojan also uses a hidden WebView mini-browser to interact with paid services, resulting in users being unfairly charged for services they never used. This not only causes financial loss but also significantly reduces the user experience.

Security experts say that Necro Trojan is not a new threat. Previously, in 2019, this malware shocked the Android user community when it infected the CamScanner application, one of the most popular document scanning applications with more than 100 million downloads.

After a period of silence, Necro Trojan is back and more dangerous than ever, targeting a variety of different applications. The malware's ability to constantly adapt and evolve shows that it is a formidable opponent in the world of cybersecurity.

Kaspersky researchers have discovered the Necro Trojan malware in many popular apps on Google Play, including Wuta Camera and Max Browser, which have been downloaded more than 11 million times. These apps were infected with the malware from older versions and were removed by Google after receiving warnings. In addition, Necro Trojan also appears in unofficial modifications of many other apps such as WhatsApp, Spotify and Minecraft, posing many risks to users.

Google has been quick to take action after reports emerged that some apps on Google Play were infected with the Necro Trojan. The company has immediately removed the malicious versions of these apps from its app store and has confirmed that Android users are proactively protected by Google Play Protect, which is capable of detecting and blocking malicious apps, even if they come from outside sources.

How Android users can protect their devices from Necro malware Trojan?

Necro Trojan is a dangerous malware that can steal personal information and harm users' systems. To protect your device from this malware and similar threats, follow these four simple steps:

1. Install strong anti-virus software:While Google Play Protect is an initial layer of protection, Necro Trojan and other malware have proven to be quite effective. To fully protect your Android device, add a solid layer of protection with professional antivirus software. With the ability to detect and remove a wide range of threats, antivirus software will help users feel more secure against attacks from malware and ransomware.

2. Download apps from trusted sources:Google Play Store is considered the safest place for users to download applications. Therefore, users should download applications from Google Play Store and avoid downloading unofficial applications or strange links, especially links sent via SMS or email to protect their personal information and important data.

3. Check the app permissions carefully:Be careful when granting permissions to apps. If an app requests access to features that seem unnecessary, such as location access for a simple game, it may be suspicious. Avoid granting unnecessary permissions, and don't grant access unless absolutely necessary. These permissions can give malware access to sensitive user data.

4. Update your devices and apps regularly:Regularly updating your phone and apps is important to stay safe. Updates often include security fixes that protect against newly discovered vulnerabilities. Outdated apps or systems can be easy targets for malware.

The discovery of Android malware like Necro Trojan reminds us that no platform is completely safe. Whether you are using Android or iOS, the best protection is to stay vigilant, keep your software up to date, and only download apps from trusted sources.

According to Gizchina
Copy Link

Featured Nghe An Newspaper

Latest

x
Millions of Android devices infected with dangerous malware
POWERED BYONECMS- A PRODUCT OFNEKO