The Google has removed the apps that were loading and clicking the ads on behalf of users from the play store. There were 22 android apps were infected of Android Adware. This is separate kind of adware which not only loaded and clicked the ads at user’s back, but also let the online advertisers know that the device is an iPhone, not an Android device.
The gang who designed the adware knew that ad networks prefer Apple traffic more than other platforms e.g. android windows and designed that accordingly.
22 Android Adware APPs Found
A cyber-security lab Sophos found this adware in apps and let the google know about this last month, also told that this was started in June this year. The researcher at Sophos whose name is Chen Tu said that
The company has found 22 apps from google play store which were part of this adware campaign. all which have been collectively downloaded more than two millions times from GooglePlay Store. Out of the 22 apps, the most popular app was Sparkle, an Android flashlight app downloaded more than one million time.
few apps from the 22 were published in 2016 and 2017 and were clean at that time. The later update which was pushed in June the developer changed the apps monetization strategy. This probably the same developer who made these apps. Moreover, Chen said that after they did a detailed analysis of this adware, this was more powerful than all others discovered previously.
Chen said that the adware Sophos detected restarts itself. infected apps contained the code which restarts the process itself within three minutes if the user closes the windows or popups. Which also lead to an increase in battery life usage on the phones. Moreover, The company named this Android adware as Andr/Clickr-ad, which starts a hidden browser and change the browser’s settings of user-agent string to an iPhone, access particular pages and clicks the ads on shown pages for generating the profit for the adware operators. Unlike other adware, this one didn’t contain any malicious code to open and run the files itself.
The same Android adware was also published in iOS apps in the iTunes store but those didn’t have the ad-clicking code. Sophos published the list of all the infected apps of the adware code.
source : ZDneT
Get real time update about this post categories directly on your device, subscribe now.