At least eight applications android, some of which have been installed millions of times and contain hidden viruses. The site explains that this malware can make users subscribe to paid services without their knowledge BleepingComputer.com This Wednesday. Maxime Ingrao, a researcher Internet security Working at Evina, he discovered this malware, known as Autolycos, in June 2021.
According to him, it is Virus Before including the result in HTTP requests, the URLs were executed by a different browser than the victim. The process was done without going through Webview, a program that allows Android apps to access web pages. This detail made its actions more difficult for users to detect. The malware allowed access to text messages from the target user’s phone.
Google was slow to react
Autolycos spread through numerous ad campaigns promoting hidden apps on Facebook. Additionally, bots ensured that these apps were always well rated. Eight of them have been downloaded a total of three million times. Vlog Star Video Editor, Creative 3D Launcher, Funny Camera, Wow Beauty Camera, GIF Emoji Keyboard, Razer Keyboard & Theme, Freeglow Camera 1.0.0 and Coco Camera v1.1.
Upon discovery, Maxime Ingrao alerted Google. But as of January 2022, the US firm has withdrawn six related applications. The last two, on the other hand, were still available on the Play Store until recently. The company continued to operate after the researcher made the existence of Autolycos public. Anyone who has downloaded any of these apps should remove them immediately and check the services they are subscribed to.
“Avid writer. Subtly charming alcohol fanatic. Total twitter junkie. Coffee enthusiast. Proud gamer. Web aficionado. Music advocate. Zombie lover. Reader.”