Skip to main content

Google Play Store malware hits 42 apps with 8 million downloads

Another day, another batch of Play Store apps found to contain malware.

This time, the 42 adware-infected apps received 8 million downloads in a campaign that lasted more than a year.

ESET, the long-established cybersecurity firm that discovered the adware, said that Google has now removed all of the offending apps, though it added that the software remains available on third-party app stores.

While many apps show ads legitimately, adware is considered a more sinister presence in that it, for example, serves up scam ads, gathers users’ personal information, drains a phone’s battery, and can be annoyingly persistent.

In this case, the malicious software served full-screen ads at random intervals and made it difficult for the user to know which app was responsible for the ads.

It also gathered data from the user’s handset that included device type, OS version, language, number of installed apps, available storage space, battery status, whether the device is rooted and developer mode enabled, and whether Facebook and Facebook Messenger are installed.

The apps were able to remain available on the Play Store for many months because the adware was designed to function in a way that gave it a greater chance of evading detection by Google’s security systems.

The alleged perpetrator

An extensive investigation detailed in its blog post led ESET to conclude the adware is the work of a college student in Vietnam. According to the cybersecurity firm, the developer started out by creating legitimate apps, but later included the adware to boost his income.

“The various stealth and resilience techniques implemented in the adware show us that the culprit was aware of the malicious nature of the added functionality and attempted to keep it hidden,” ESET said.

The most popular of the offending apps was Video Downloader Master, which received 5 million downloads before it was removed from the Play Store. Here are the apps that ESET reported to Google:

Image used with permission by copyright holder

If you have any of the above apps on your Android handset or tablet, the advice is to delete them immediately. Some of the apps were also found in Apple’s App Store but contained no adware, ESET said.

Choosing apps

ESET’s discovery is a timely reminder to take care when choosing apps to download to your device. If the app is new or isn’t well known, it’s worth spending a little time researching reviews or looking online for information on the developer.

Malicious apps have always been an issue for the Play Store, though Google said earlier this year that it’s working constantly to improve its abuse detection technologies and machine learning systems to deal with the issue, and employs a team of human reviewers, too.

In further efforts, the Google Play Protect security platform scans 50 billion apps on users’ devices on a daily basis to check the safety of the installed software.

In 2017, Google deleted 700,000 malicious apps from the Play Store, and banned 100,000 developers from submitting new ones.

Editors' Recommendations

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Play ‘spot the difference’ with Google’s new Play Store logo
Google's redesigned Google Play logo.

Google Play, the app store where you likely get most of your Android apps, has turned 10 years old and to celebrate the anniversary, Google has thrown out the old logo and given the online store an entirely new one. Well, when we say “entirely new,” we may be pushing it a little, as the new Google Play logo is still a multi-colored triangle resembling a traditional play button, so don’t expect a huge change.

New Play logo (left) and old Play logo (right) Image used with permission by copyright holder

Read more
Google Play Store now offers third-party app payments, but only for some users
The Google Play store icon on an Android phone.

Google will now open up its Play Store as a result of the European Union's Digital Markets Act, the company announced today. Now, any developers distributing apps or games in Europe (the European Economic Area, to be precise) will be able to sidestep the Google Play billing system with no penalty. The change comes after a similar push in South Korea.

"As of today, Google will not remove or reject updates of non-gaming apps from participating developers for offering alternative billing systems for EEA users. Google Play’s billing system will continue to be required for apps and games distributed via Play to users outside the EEA and for games distributed to users within the EEA. We expect to expand billing alternatives to developers of gaming apps for their users in the EEA, in advance of the DMA's effective date," Google's Estelle Werth, director of EU Government Affairs and Public Policy, said in a blog post.

Read more
Google Play improves privacy, payments, and subscriptions 
Person holding Samsung Galaxy smartphone showing Google Play Store.

Google is introducing several new features that will help game and app developers to engage and grow their audience while further improving privacy and security.

At this year’s Google I/O conference, the Google Play team is focusing on new initiatives to create an even safer app ecosystem for users and developers alike while also adding new tools for developers. These include new custom store listing options, increased flexibility in pricing models for in-app subscriptions, and more. The Google Play team outlined these new initiatives during its What’s New in Google Play session at Google I/O 2022.

Read more