Beware of apps producing additional malware
By Jeph Ajobaju, Chief Copy Editor
Telephone, computer, and other electronic device users have been alerted by the Nigerian Communications Commission (NCC) to avoid downloading mobile applications from the ‘Mobile Apps Group’ available on Google Play Store.
The NCC warns the group releases apps containing trojans and adware harmful to users and their privacy.
“The Nigeria Computer Emergency Response Team (ngCERT) has continued to observe and monitor the constant introduction of malicious mobile applications into Google Play Store,” NCC-CSIRT warned in an advisory.
“Mobile Apps Group has a history of distributing malware-infected apps through the Google Play store, and the current batch of apps has already been downloaded over a million times.”
The NCC listed the group’s malicious apps to include Bluetooth Auto Connect; Bluetooth App Sender; Driver: Bluetooth, Wi-Fi, USB; and Mobile transfer: smart switch.
It warned malicious activities of these apps are high in probability and potential to do damage.
_________________________________________________________________
Related articles:
NCC alerts Zoom users criminals can infiltrate undetected
New malware steals bank login data, NCC warns
Fake and stolen phones won’t work any more, says NCC
_______________________________________________________________
Modus operandi
“The apps will delay the display of ads for up to three days after installation to avoid detection,” the NCC explained, per reporting by The PUNCH.
“However, once this period has passed, the user is bombarded with advertisements and is directed to malicious phishing websites in the Chrome browser. While the device is idle, the malicious app can open Chrome tabs in the background.
“Some of the sites it opens may appear to be harmless, but they are pay-per-click pages that generate revenue for the developers when clicked on.”
The NCC said the consequences of installing malicious apps include
- User being bombarded with advertisements
- Theft of sensitive user data
- User privacy and data being jeopardised
- Clicking on ads resulting in the stealth download or installation of additional malware