We Play Store offers a catalog of applications to download QR code scanners, image to PDF converter, games and even purses files criptomonedas . However, some of these apps are malicious because they have embedded banking Trojans that directly affect users.
According to Ars Technica , specialists from ThreatFabric (a cybersecurity company ) have detected the applications that included said Trojans , in addition, they discovered that the number of downloads exceeded 300,000.
Despite the fact that Google has security controls in its application store, from time to time a malicious app sneaks in that manages to avoid the automated systems that are responsible for detecting harmful codes , but how do they get into the Play catalog? Store?
The creators of these malware employ a series of tricks to avoid security scanners. ThreatFabric experts explain in a statement that “what makes it very difficult to avoid these malware campaigns distributed on Google Play is automatic detection with the use of machine learning, all malicious apps that manage to emerge have just a tiny code footprint harmful ”.
Many of the apps that become banking Trojans start out as rogue apps , however, when installed on devices , users are notified to download updates that contain malware .
These are the Trojans that can sneak into your mobile
The most advanced Trojan that is incorporated in several of these applications is ‘Anatsa’, because it manages to extract the credentials of users from their bank accounts to steal money .
The creators of these apps are responsible for creating reliable appearances for users to proceed to download them, in addition, most of them have positive reviews.
Other malicious codes that the experts have detected have been ‘ Alien ‘, ‘ Hydra ‘ or ‘ Ermac ‘. These Trojans manage to run on users’ devices when they download an application that appears harmless.