Tuesday, February 7 2023

24 malicious apps hosted on google play store found to be containing malware of rogue ware, these 24 apps have a whooping combined downloads of over 300 million. To some respite, the apps are now removed from Google Play Store, but what about a large number of users will still have these installed on their smartphones. for them, immediately uninstalling these apps from smartphone is the only solution.

Hi Security developed by Hi Security, Super Cleaner developed by Hawk App, Super Battery developed by Hawk App, Candy developed by ViewYeah Studio, Hi VPN developed by Hi Security, Gallery developed by Alcatel Innovative Lab,

filemanager developed by mie-alcatel.support, Net Master developed by Hi Security, apps are included in the list. Apps that were not in Play Store: Weather developed by mie-alcatel.support,Joy Recorder developed by mie-alcatel.support, Calculator, Launcher developed by mie-alcatel.support.

Not 100% confirmed who is behind the apps, the Chinese company named Shenzhen HAWK is the most likely at questions. Unfortunately, Apps under Shenzhen HAWK have a history of malware, rogue ware, or unethical practices.

Google in a statement said “If we find behaviour that violates our policies, we take action.”

Planning to hire an outside security consultant to audit their apps, Shenzhen Hawk’s parent company, TCL Corporation responded saying that they “understand Google’s actions in removing all of the Shenzhen apps and are actively working with them to better understand their concerns.”

So authentic these 24 apps seemed to be that all of these apps took user permissions to gain access to various features like the ability to make calls, take pictures and record video, record audio and much more. The users were unwary of the fact that the apps also asked for a large amount of unnecessary dangerous permissions, which was overlooked.

Cellphone users who installed these apps noticed, included but not limited to, humongous phone bill charges, always open browser that auto clicked on the ads, abrupt restart of the cellphones, more than normal booting time of cellphone, non responsive web pages. According to an cyber expert, the apps might have been created to harvest user data ans store it on a server in China.

Previous

How to prevent supply chain attack?

Next

Free preview of the 92nd Academy Award ceremonies on websites? Beware

Check Also

Widget

Don’t Miss

Cyber Executive Moves: Appgate, Trellix, Rubrik

Julia Bischoff

Appgate appoints a new CEO, Trellix hires loanDepot’s CISO, SANS Institute taps new CISO director. Secure access solutions provider Appgate appointed Leo Taddeo as chief executive officer and president. Taddeo stepped into the new role after serving as Appgate’s chief information security officer since February of 2022. The SANS Institute, a cybersecurity training company, appointed […]

Cyber Deals: Drata, Field Effect investments, and Veracode acquisition

Julia Bischoff

Cybersecurity venture funding and merger activity: This week’s largest deals were MDR and security automation investments, as MSP consolidation continues to attract corporate buyers. Funding Cork, Ireland-based, data encryption company Valutree acquired $12.8 million in their series A funding round, led by investors Molten Ventures and Ten Eleven Ventures. Funds will be used to expand […]

Cyber Deals: Spin Technology, CyberArk, Mesh Security

James Hu

Cybersecurity Venture Funding and Mergers: This week’s deals involved cloud security services, data privacy, and industrial cybersecurity companies. Funding Cloud cybersecurity firm Mesh Security has secured $4.5 million in venture funding. The round was led by Booster Ventures with participation from other investors. Spin Technology, a firm providing SaaS security solutions, raised $16 million in […]

Cyber Deals: Cybrary, Ping Identity, Axio Global

James Hu

Cybersecurity Venture Funding and Mergers: Key investments were made in cybersecurity training, secure enterprise browser, and risk management companies. M&A activity this week involved identity security, zero trust, and threat intelligence firms. Funding Cybrary, a cybersecurity training platform, raised $25 million in a Series C funding round. The round was led by BuildGroup and Gula […]

Cybrary Secures $25 Million in Series C Funding Round

James Hu

Cybrary, a Maryland-based cybersecurity training platform provider, raised $25 million in a Series C funding round. The round was led by BuildGroup and Gula Tech Adventures, two of its current investors. Following its $15 million Series B round announced in November 2019, this latest investment brings Cybrary’s total funding to date to $48 million. Cybrary […]

Cyber Deals: Exterro, Naoris Protocol, Cybit Sec

James Hu

Cybersecurity Venture Funding and Mergers: This week, notable funding and M&A activity involved compliance, enterprise security, and vulnerability assessment firms. Funding Exterro, a legal governance, risk, and compliance software provider, completed a strategic recapitalization valuing the firm at over $1 billion. The company, currently owned by Leeds Equity Partners, is targeting a potential 2023 initial […]