The two apps on Google Play Store that are putting millions of Android users at risk

In some unfortunate news, the Google Play Store has unveiled yet another mischievous duo hiding in its digital realm. A leading cybersecurity company called Pradeo was the one to make the discovery. After detecting this illicit behavior, Pradeo immediately alerted Google, and the apps were removed from Google Play. Researchers at Pradeo found that two malicious apps contained spyware and have been secretly sending Android users’ private data to servers in China. Here’s what we know so far and what you can do if you have these apps downloaded to your device.

CLICK TO GET KURT’S FREE CYBERGUY NEWSLETTER WITH SECURITY ALERTS, QUICK TIPS, TECH REVIEWS AND EASY HOW-TO’S TO MAKE YOU SMARTER

What are these apps, and what did they do?

The two apps were posing as file management tools and had collectively amassed over 1.5 million downloads. The two apps are called File Recovery & Data Recovery and File Manager, both from the same developer. Each app was meant to be a way for Android users to help organize files and data on their phones. Both of the apps also stated that no data collection occurs under their watch.

THIS QUICK TRICK LETS YOU COPY TEXT FROM ANY IMAGE IN SECONDS

Screenshot of the File Recovery & Data Recovery app on the Google Play store.

Two apps masquerading as file file management tools were being downloaded on the Google Play store and have stolen data from many Android users. (CyberGuy.com)

 Credit: Pradeo

What did these malicious apps collect and share with China?

The Pradeo report found that these apps actually collected reams of private user information and shared it with China without people’s knowledge, including contact lists, media files, real-time locations, mobile country codes, network provider details, SIM provider network codes, operating system versions, device brands, and models.

COULD A CHUNK OF THIS $37.5M FACEBOOK SETTLEMENT BELONG TO YOU?

The deceptive tactics of the hackers behind the two apps

The hackers behind these apps also made it look like they were trustworthy by using install farms to artificially inflate the number of downloads they had.  By inflating the download count, they create an illusion of trustworthiness, making potential victims more likely to install their apps. Plus, each app also had advanced permissions to allow them to hide their icons on an Android Home Screen, so it’s more difficult to uninstall them. This further aids the hackers in maintaining their presence on a victim’s device, increasing the potential for unauthorized access or malicious activities.

MORE: MALICIOUS ANDROID SPYWARE DETECTED IN OVER 100 POPULAR APPS

Google’s response to the apps on the Google Play Store

We reached out to Google for a comment about the two malicious apps that were discovered on the Google Play Store, and a Google spokesperson had this to say:

“These apps have been removed from Google Play. Google Play Protect protects users from apps known to contain this malware on Android devices with Google Play Services, even when those apps come from other sources outside of Play.”

DON’T PANIC: HERE’S WHAT TO DO IF APPLE THREATENS TO DELETE YOUR IPHONE PHOTOS

What if I have these apps on my Android?

You can remove the apps yourself, but Google Play Protect, which is built-in malware protection for Android devices, automatically removes known malware. However, it is important to note that Google Play Protect may not be enough. Historically, it isn’t 100% foolproof at removing all known malware from Android devices. 

Have antivirus software on all your devices 

Keeping hackers out of your devices can be prevented if you have good antivirus software installed. Having antivirus software on your devices will make sure you are stopped from clicking on any potential malicious links which may install malware on your devices, allowing hackers to gain access to your personal information. Plus, it’s designed to tell you when there is already malware on your device so that you can immediately work towards getting rid of it. 

See my expert review of the best antivirus protection for your Windows, Mac, Android & iOS devices by heading to Cyberguy.com/LockUpYourTech.

HOW HACKERS ARE NOW TARGETING YOUR VOICE AND HOW TO PROTECT YOURSELF

Screenshot of the File Manager screen in the Google Play store.

File Manager is an app that sent Android users info to servers in China. (CyberGuy.com)

 Credit: Pradeo

How to uninstall an app on your Android

Settings may vary depending on your Android phone’s manufacturer 

  • Go to your Settings app
  • Tap Apps & notifications or just Apps
  • Tap See all apps
  • Scroll down and find the app you want to uninstall
  • Tap the app and then tap Uninstall
  • Hit Ok

MORE: ANDROID USERS AT RISK AS BANKING TROJAN TARGETS MORE APPS 

How can I avoid this from happening in the future?

Before downloading a new app to your phone, you should always be careful even if it’s from a legit source like the Google Play Store or the App Store. 

Read the reviews and privacy policies

This is one of the most important steps you can take before downloading an app. You want to make sure that you understand exactly what kind of permissions an app has before giving over your personal information, and make sure you’re also thoroughly reading reviews. Look for specificity in those reviews because sometimes hackers will post generic, fake reviews to make an app look legit when it’s not. It also wouldn’t hurt to do some research on the app developer to see if they’re legit.

Be skeptical of app clones

Sometimes, cybercriminals create fake or cloned versions of popular apps to trick you into downloading malware. Pay attention to app names, developer names, and reviews to ensure you’re downloading the legitimate version.

Trust your instincts

If something feels off about an app, trust your gut instincts. If an app seems suspicious, has poor reviews, or exhibits unexpected behavior, it’s best to err on the side of caution and avoid downloading or using it.

HOW TO HIDE PHOTOS ON YOUR IPHONE AND ANDROID FROM SNOOPS

Kurt’s key takeaways

Unfortunately, these hackers successfully trick innocent people into downloading these malicious apps, which is why we always have to stay vigilant and research everything before we download an app to our phones and tablets. Let’s keep our guard up and remember that a few moments of precautionary research can save us from the endless headaches caused by these cunning hackers and their nefarious apps.

CLICK HERE TO GET THE FOX NEWS APP

What more could app stores be doing to prevent malicious apps like these from sending our private data to foreign countries like China? Let us know by writing us at Cyberguy.com/Contact

For more of my security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter

Copyright 2023 CyberGuy.com.  All rights reserved.

Check Also

Larian Studios shocks fans by not planning any Baldur’s Gate 3 DLC or expansions, with no Baldur’s Gate 4 in sight. Time for something new!

During a panel at the Game Developers Conference (GDC) today, the founder of Larian Studios, …