Anti-malware software apps on Google Play Store have stolen personal data of around 15,000 Android users. Google removed the app from the Play Store after the breach was reported. The news comes from a report by Checkpoint Research, in which three researchers found that hackers used Sharkbot Android Stealer software in an antivirus application to steal users’ passwords, bank details and other personal information. All the apps have been downloaded more than 15,000 times on the Play Store.
Malware first appeared
According to a report by Check Point, this malware implements geofencing feature and piracy technology, which differentiates it from the rest of the malware. It also uses something called the Domain Generation Algorithm (DGA), which is rarely used in the world of Android malware.
These apps steal users’ personal data from Google Play Store
These six malware apps, similar to antivirus apps, infect more than 15,000 users with Sharkbot Android malware, which steals credentials and banking information. During the research, they found about 1,000 IP addresses of devices. Most of the victims were from Italy and the United Kingdom.
These are the six apps that were found to be corrupt and were later removed from the Google Play Store. Sharkbot doesn’t target every potential victim, but only identifies and ignores users from China, India, Romania, Russia, Ukraine or Belarus, using select geo-fence features, the report said. Hackers are transferred when users input credentials in this Windows.765