Apps on Google Play with 1.5 mn installs found sending sensitive data to China

S

ecurity researchers have found two malicious file management applications on Google Play Store with a collective download count of over 1.5 million that sends sensitive users' data towards various malicious servers based in China.

Our engine detected two spyware hiding on the Google Play Store and affecting up to 1.5 million users. Both applications are from the same developer, pose as file management applications and feature similar malicious behaviours, said cyber security company Pradeo.

They are programmed to launch without users' interaction and to silently exfiltrate sensitive users' data towards various malicious servers based in China, it added.

Both apps stated they collect no data on the Google Play website; however, the security researchers said that both spyware collected very personal data from their targets, to send them to a large number of destinations which are mostly located in China and identified as malicious.

The first app, File Recovery & Data Recovery, had over a million installs, while File Manager had over 5,00,000. Both apps were uploaded by the same publisher, wang tom.

โœ”๏ธ Apps on Google Play with 1.5 mn installs found sending sensitive data to China

๐Ÿ“ Post your comments

๐Ÿ’• Found this article helpful? Spread the word and support us!