Fake Whatsapp, Instagram, Facebook on the Google Play Store
IT Security researchers at Zscaler have identified fake apps uploaded by cyber criminals that are infected with a notorious SpyNote RAT
Android devices are more susceptible to attacks by cyber criminals because of its open source models which mean the source code is freely available for anyone to see and use. Lately, there has been an increase in third party apps for Android users but these apps come with a heavy price
Of late, the IT Security researchers at Zscaler have been identifying some fake apps uploaded by cyber criminals that are infected with a notorious SpyNote RAT (Remote Access Trojan). This report was first published by HackRead on the SpyNote in August last year when Palo Alto’s Unit 42 revealed that the Trojan allows attackers to gain remote administrative control of those devices on which users have installed apps in APK format, the process of downloading apps in APK format on Android devices is called as “sideloading” which is only possible if the user has allowed “Unknown sources” in their security settings.
The names of the apps which have their imposter apps on the Play Store are “Netflix, Whatsapp, Youtube, Video Downloader, Google Update, Instagram , Hack Wifi, AirDroid, WifiHacker, Facebook, Photoshop, SkyTV, Hotstar, Trump Dash and PokemonGo.”
After installing, once the app is opened, it shows a blank window and removes itself from the screen tricking users into believing the app has been removed from the devices but actually it runs from the background to carry its malicious attack. It must be noted that there are several other fake apps currently infected with malware including Super Mario Run and Pokémon Go.
So how to protect yourself?
In order to protect your Android devices from malware and RATs like SpyNote; users must never apps from a third-party store and use Google Play Store to download apps. Also, never click on a link sent by an unknown contact in an SMS or email message.