A decoy application is submitted to app stores with modified code, either to circumvent features or paywalls, but are often found to be ripe with vulnerabilities and mobile malware.
Wiki reader apkpure android#
The second discovery, also by Doctor Web, is of 10 decoy Android applications available in the Huawei AppGallery infected with a new variant of the Joker/Bread Android Trojan. Unfortunately, this is not the only malware seen in APKPure or other third-party app store applications.
Wiki reader apkpure code#
While APKPure has responded to the malware discovery with a new version of their alternative app store (3.17.19), this aggressive infection and attack on Android users is not uncommon for users of third-party app stores due to the lack of security controls, code verification, and trusted security partners. In this case, the infected APKPure app store was installing malicious applications that display ads on both the lock screen and in new browser tabs as well as collecting device information and sending it back to an unknown source.ĪPKPure, established in 2014 as an alternative repository of Google Play apps including older versions and no-longer-available titles, is one of the more popular third-party Android app stores available to users. Discovered by Doctor Web, this aggressive Android Trojan is capable of acting as the user on the device, including adding or deleting applications or even modifying local data. The first and most prominent is a new mobile variant of the Android Triada malware discovered infecting the popular alternative Android app store APKPure app (3.17.18APKPure). Taking advantage of the side-loading capabilities, or unverified installations, these third-party app stores can pose big risks to mobile endpoints and the data they store. With over 300 known third-party app stores hosting millions of applications, these alternatives are increasing in popularity with mobile endpoint users looking to circumvent regional restrictions and paywalls, access older or removed apps, as well as use unverified apps on their devices. The discoveries are examples of how malware can spread through other sources outside of Google Play, and highlight the importance of sideloading detection, on-device malware detection, and app risk analysis to secure Android endpoints. Two new active and aggressive Android Trojan variants have been discovered in the wild, impacting users taking advantage of two alternatives, non-Google Play app stores (“third-party” app stores).
0 kommentar(er)
