Google removes 13 apps containing malware, downloaded over 5,60,000 times

Google has reportedly removed a total of 13 apps from the Google Play store because they were found to be installing malware on people’s devices. So far, as many as 5,600,000 users of Android downloaded these apps which include a truck simulator, fire truck simulator, luxury car driving simulator and more.

Lukas Stefanko, who is a security researcher at ESET, recently tweeted about the 13 malicious apps which did not show any legitimate use. He also noted that two of these apps were featured in the trending section on the Play store. These apps, however, are no longer available. Google has removed them from the Play Store.

Don't install these apps from Google Play - it's malware.

Details:
-13 apps
-all together 560,000+ installs
-after launch, hide itself icon
-downloads additional APK and makes user install it (unavailable now)
-2 apps are #Trending
-no legitimate functionality
-reported pic.twitter.com/1WDqrCPWFo

— Lukas Stefanko (@LukasStefanko) November 19, 2018

The apps were listed under a single developer called Luiz O Pinto, and refused to work, and crashed when a user tried to open the app to play the game. Also, the apps would ask users to install an additional APK called ‘Game Center.’

Here’s a look at what happens when someone downloads and launches the app.

App functionality demonstration pic.twitter.com/11HskeD56S

— Lukas Stefanko (@LukasStefanko) November 19, 2018

Downloaded APK is called - Game Center.

This app is downloaded in the background and requests user to install it.
Once launched, it hide itself & displays ads when device is unlocked.

Thanks to @wdormann for sending me link to downloaded APK.
VT(1/59): https://t.co/OUWIWIjM4l pic.twitter.com/JpgyCQBBQD

— Lukas Stefanko (@LukasStefanko) November 19, 2018

This isn’t really the first time that the Play Store has experienced something like this. Last year Google was held responsible for the spread of auto-clicking adware to as many as 36 million mobile devices.