Skip to main content
  1. Home
  2. Social Media
  3. Android
  4. News

Did you download this fake ad-infected WhatsApp from the Google Play Store?

Mark Austin
By

fake WhatsApp
Google/The Hacker News
Last week, an official-looking version of the popular WhatsApp messaging application for Android appeared on the Google Play Store, and more than one million users were tricked into downloading the fake app. The “Update WhatsApp Messenger” download page even appeared to come from the actual creators, as it included the real developer’s title “WhatsApp Inc.” How could something malicious have fooled so many users?

It turns out the cybercriminal used some Unicode trickery to make it appear authentic. As you can see in the app details captured in the screenshots above from The Hacker News, the scam artist added an invisible character space in the actual company name: “WhatsApp+Inc%C2%A0.”

Although it looks very much like the real thing, installing the rogue software will run the real Android WhatsApp client, but with advertising plastered around it.

A Redditor named DexterGenius first spotted the discrepancy and decompiled the download code to find out what it really did. “The app itself has minimal permissions (internet access) but it’s basically an ad-loaded wrapper which has some code to download a second apk, also called ‘whatsapp.apk.,’ DexterGenius wrote. “The app also tries to hide itself by not having a title and having a blank icon.”

The scam app has now been removed from the official Google Play Store, but it’s curious how it ended up there in the first place, as it would lead users to think they’re downloading a legitimate app directly from a Facebook-owned property.

Google has recently been making efforts to remove “zombie apps” from its Play Store, and has even deployed AI algorithms to detect potential infections with its Play Protect system. Still, the ongoing presence of malware and adware on the service remains a real concern.

When asked for comment on the fake WhatsApp download, Google told The Register it was “looking into the matter.”

Even when downloading or updating from a trusted source such as the Google Play Store, it pays to be vigilant. Malware on mobile devices has seen a sharp increase lately, and Google may soon be introducing a “panic button” feature than can get you out of a jam if you inadvertently download the wrong thing.

Editors' Recommendations

Video-editing app LumaFusion to get a Galaxy Tab S8 launch
A tablet featuring the LumaFusion video editing app.
Samsung just copy-and-pasted iOS 16’s lock screen in its One UI 5 beta
From left, Good Lock, Samsung One UI 5 beta, and iOS 16 lock screens are displayed on smartphones.
These 80+ apps could be running adware on your iPhone or Android device
Illustration of an infected iPhone
Can’t stand using Instagram in 2022? This app fixes everything you hate about it
The OG App running on an iPhone.
Google wants you to know Android apps aren’t just for phones anymore
Person holding Samsung Galaxy smartphone showing Google Play Store.
Twitter’s latest features are all about curbing election misinformation
Twitter's new election-specific features shown on a smartphone.
Snapchat Plus subscribers are getting these four new features today
The Snapchat app store listing on a mobile device with a stylus resting on it.
You can (sort of) generate art like Dall-E with TikTok’s latest filter
A person's hand holding a phone with the TikTok app on it.
You can now use the Add Yours sticker on Reels for Facebook and Instagram
A series of three mobile screenshots on a gray background showing the new Add Yours sticker for Facebook Reels.
TikTok bans influencers from creating paid political ads
A person's hand holding a phone with the TikTok app on it.
The 10 most popular TikTok accounts
The TikTok app on a smartphone's screen. The smartphone is sitting on a white table.
Downloaded YouTube Shorts clips will soon include watermarks
A girl dancing in a Shorts video.
Snap’s Pixy drone flies off into the sunset as it’s reportedly canceled
Pixy hovers in the sky.