Category: Google|Apr 2, 2020 | Author: Admin

Tekya Malware Targets 1 Million Android Users Through Malicious Apps On Play Store

Share on

While Google employs some tough policies for app developers to keep the Play Store safe, yet it never remains so. Once again, criminal hackers managed to ditch Google’s policies and flood the Play Store with malicious Android apps.

This time, they target users with Tekya malware distributed via numerous apps with almost 1 million downloads.

Tekya Malware In Malicious Android Apps Researchers from Check Point Research has found further Android malware targeting users via Google Play Store. They found multiple Android apps that looked safe but actually contained Tekya malware. Elaborating on their findings in a post, researchers stated that they observed around 56 apps on Play Store exhibiting malicious behavior.

Of these, 24 specifically aimed at children as they impersonated various kids’ apps, such as games and puzzles. Whereas the remaining impersonated utility apps such as calculators, translators, cooking apps, etc. Upon downloading the app, the malware installs and executes on the target device. While the technical details of Tekya are available in the researchers’ post, in brief, it primarily serves ad fraud purposes.

With the goal of committing mobile ad fraud, the malware – dubbed ‘Tekya’ – imitates the user’s actions in order to click ads and banners from agencies like Google’s AdMob, AppLovin’, Facebook, and Unity.

To evade detection by Google Play Protect, the malware obfuscates the native code. It then leverages ‘MotionEvent’ feature on Android phones to imitate the victim’s actions for generating clicks. Together, these malicious Android apps had a total number of downloads of about 1 million. In other words, these apps potentially risked the security of around 1 million users. Apps Removed, But Threat Remains Check Point researchers have confirmed that Google has removed all the malicious apps detected in their study. The developers also removed a couple of those apps from the Play Store. So, at present, users are safe from Tekya malware. Nonetheless, this doesn’t mean that the threat is over. At any point, cybercriminals may flood Play Store with malicious apps to spread other malware, especially the unknown ones, just like Tekya that remained undetected by VirusTotal and Play Protect. As stated by the researchers,

There are nearly 3 million apps available from the store, with hundreds of new apps being uploaded daily – making it difficult to check that every single app is safe.  Thus, users cannot rely on Google Play’s security measures alone to ensure their devices are protected.

Let us know your thoughts in the comments.

Sponsored Ads:

Comments:


I think Apple has given up

Category: Apple|Nov 30, 2023 | Author: Admin

There are not a few who have been annoyed by the shortage

Category: Apple|Nov 29, 2023 | Author: Admin

THE NIGHTMARE: The files since May are gone

Category: Google|Nov 28, 2023 | Author: Admin

No, you're not wrong

Category: IT|Nov 27, 2023 | Author: Admin

Most Apple employees join Google after resigning, shows LinkedIn data

Category: Apple|Nov 26, 2023 | Author: Admin

Warning: 3 Critical Vulnerabilities Expose ownCloud Users to Data Breaches

Category: IT|Nov 25, 2023 | Author: Admin

The trade cost them NOK 657 billion

Category: IT|Nov 24, 2023 | Author: Admin

Is this the cause of the OpenAI chaos? “A danger to humanity”

Category: IT|Nov 23, 2023 | Author: Admin

Sam Altman BACK

Category: IT|Nov 22, 2023 | Author: Admin

It's much worse than we thought

Category: IT|Nov 21, 2023 | Author: Admin

February: 3000 nits, 24GB RAM, Snapdragon 8 Gen 3

Category: General|Nov 20, 2023 | Author: Admin

UPDATED: Removed, and the reason is shocking

Category: General|Nov 19, 2023 | Author: Admin

"Apple is struggling more than expected"

Category: Apple|Nov 18, 2023 | Author: Admin

Old Manifest V2 Chrome extensions will be disabled in 2024

Category: Google|Nov 17, 2023 | Author: Admin

Now Windows is an app for iPhone

Category: Microsoft|Nov 16, 2023 | Author: Admin
more