Facebook is pushing a host of super-dangerous Android malware
Researchers find adware being aggressively promoted on Facebook
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
More than a dozen adware apps have been found being promoted on Facebook, resulting in a total of over seven million downloads, experts have warned.
Researchers from McAfee discovered the malicious mobile apps and the aggressive advertising campaign on one of the world’s largest social media platforms, warning that users could be at risk of attack.
The promised functionality was to optimize the mobileendpointand rid it of spyware, adware, and othermalware. Instead, what the apps did was push ads, whilst also changing their names and icons frequently in order to stay on the victim’s device for as long as possible - including masquerading as thePlay Storeitself.
Faking the Play Store
The apps managed to serve the ads by abusing the Contact Provider Android component, meaning every time the user installs a new app, the adware uses this subsystem, and begins the ad-serving process. As a result, the user thinks the ads were being served by the newly installed app.
The adware apps also create a permanent service for displaying the advertisements, and if user terminates the service, it just restarts.
China squashes thousands of malicious mobile apps in anti-fraud drive>More brutal malware-laden Android apps are lurking on the Play Store>Keep your identities safe with the best ID theft protection tools around
These are the apps that McAfee found as malicious - all have since been removed from the Play Store:
The apps have been downloaded by users all over the world, with those located in South Korea, Japan, and Brazil, were most affected.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
WhileGoogleremoving the apps is definitely a welcome move, it doesn’t help those that have already downloaded them. Until they are removed, these apps will continue to be a nuisance to the users.
Via:BleepingComputer
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.
Cisco issues patch to fix serious flaw allowing possible industrial systems takeover
Washington state court systems taken offline following cyberattack
Owl Labs Meeting Owl 4+ review
