An Android app comes bundled with password-stealing malware, which has now victimized more than 100,000 Google Play Store users by downloading the malware.
(Photo: Leon Neal/Getty Images)
In this photo illustration an image of the Google logo is reflected in the eye of a young man on August 09, 2017 in London, England. Founded in 1995 by Sergey Brin and Larry Page, Google today makes hundreds of products used by billions of people around the world, from YouTube and Android to Smartbox and Google Search.
Malicious application on Google Play Store
The popular app on Google Play Store, Android’s official app market, “Craftsart Cartoon Photo Tools” comes bundled with trojan horse malware, known as Facestealer, according to an article by Threat Post.
Facestealer Android malware steals login credentials, especially passwords, of its victims once the Trojan reaches its targets’ devices.
The app, which claims to be a photo editing tool, allowing its users to turn their images into a cartoon-like painting or animation, has already garnered 100,000 downloads on the Play Store.
It has attracted a large number of users as it provides them with tons of cartoon filters to choose from, allowing them to post a cartoon version of their photos on their social media platforms.
Android app with password stealing malware
But it turns out that what was supposed to be just a harmless photo-editing app from the Play Store comes bundled with malware that steals passwords.
Threat Post said in the same report that Pradeo cybersecurity researchers found malicious code hidden under the photo editing tool.
(Photo: JOSEP LAGO/AFP via Getty Images)
The Android logo is displayed at Mobile World Congress (MWC) in Barcelona on February 26, 2019. – Phone makers will focus on foldable screens and the introduction of super-fast 5G wireless networks at the world’s biggest mobile show while that they are trying to reverse a decline in smartphone sales.
Cybersecurity researchers said that there is a “small piece of malicious code that easily slips under the radar of store backups”, which essentially allows threat actors to list the malware-spreading app on the Play Store.
This comes even as the rogue photo-editing app comes bundled with an Android threat aptly called Facestealer, which has slithered onto the Play Store several times in the past via seemingly harmless apps.
Read also : VPN app downloads on Google Play Store, Apple App Store climbs in Russia
Password stealing app: how it works
Meanwhile, according to a recent analysis by cybersecurity firm Malwarebytes, the malicious app forces its users to log into their Facebook accounts before they can start editing their photos into cartoon animations.
(Photo: Leon Neal/Getty Images)
In this photo illustration a fingerprint is displayed on a mobile phone while the Google logo is displayed on a computer screen on August 09, 2017 in London, England. Founded in 1995 by Sergey Brin and Larry Page, Google today makes hundreds of products used by billions of people around the world, from YouTube and Android to Smartbox and Google Search.
Then, the malware tricks threat actors into accessing their victims’ account, allowing the Trojan to steal various information and personal data from their targets’ Facebook accounts.
Some of the included information that Trojans steal are IP addresses, email addresses, phone numbers, message conversions, payment details, among other sensitive data.
It should be noted that the cartoon photo editor app is now inaccessible on Google Play Store, but it might still be available elsewhere.
Related article: Google Play system update includes faster wait time for app downloads and better app discovery
This article belongs to Tech Times
Written by Teejay Boris
ⓒ 2021 TECHTIMES.com All rights reserved. Do not reproduce without permission.