Not a day goes by without a researcher or cyber security company somewhere in the world finding one or more infected apps on the Play Store from Google: apps for Android are an incalculable number, for statistics it is impossible that they are all “clean“. Lately, however, the developers of malware and other kinds of malicious code have gotten smart and are working harder and harder. The last example is that of DawDropperthe malware that Trend Micro discovered inside 14 apps on the Play Store.
DawDropper, to be honest, is not even a malware but it is a “dropper“of malware and, specifically, is a dropper capable of infecting smartphones with 4 different types of viruses. In short, as the saying goes: you change in order not to die and DawDropper has done just that, it has diversified so as not to be discovered by Google’s antivirus. And, in fact, one of the infected apps was on the Play Store from May 2021.
What are the 14 infected apps
Infected apps, containing DawDropper, discovered by Trend Micro are 14 well. They have all been removed from the Play Store, but some have already collected many downloads. Because of this we advise you to check if you have one of these apps on your smartphone:
- Call Recorder APK
- Rooster VPN
- Super Cleaner – hyper & smart
- Document Scanner – PDF Creator
- Universal Saver Pro
- Eagle photo editor
- Call recorder pro +
- Extra Cleaner
- Crypto Utils
- Just In: Video Motion
- Lucky Cleaner
- Simpli Cleaner
- Unicc QR Scanner
If one of these apps, or more than one, should be present among the apps on your mobile, then almost certainly your device is infected: immediately delete the app (s) in question, download and use an antivirus for Android and, above all, check your bank account because you might find some nasty surprises.
Why DawDropper is dangerous
As already mentioned, DawDropper is dangerous because it can download 4 different computer viruses to your phone: Octo, Hydra, Ermac And TeaBot. We already know them all, we have already talked about them before and we know very well that it is dangerous banking malwarei.e. viruses that aim to steal app login credentials to check bank accounts.
After credentials stolen these malware send them to their own control servers, where cybercriminals can pick them up and use them for log into our account. To do what, we already know.
As Trend Micro explains, in fact, DawDropper can spy on the activities on our smartphonesteal the credentials (including PINs) of the banks, check the SMS (through which the banks send the OTP code to authorize wire transfers), run other code and scripts in the background, and launch other potentially dangerous apps.
How to protect your bank account from DawDropper
The infected app Call Recorder was present on the Play Store from May 2021, while Unicc QR Scanner it was previously loaded and then removed because it contained the Octo virus. In short: these apps come and go from the Play Store and this means that we must always be very careful when downloading apps for Android.
Even if we are not using alternative stores, but the official one of Google, it is in fact possible that the app we are downloading is infects. For this reason, in addition to the cautionit is also useful to have a suite antivirus with coverage also for Android devices. In this way we will have an extra layer of security to protect our phone and, above all, ours Bank account.
#Delete #infected #apps #empty #bank #account