85 apps found in play store that steal passwords

Security is still an issue that gives Google a lot of trouble. Malicious applications have been detected on Android on more than one occasion. Despite the company's attempts to reduce its presence with tools like Google Play Protect, dangerous applications continue to be detected. Again, malicious applications have been detected in the Play Store.

Found 85 apps in the Play Store that steal passwords

In total there are 85 applications that have been detected. Furthermore, among all of them they add millions of downloads so far. Since there are 7 of them that are around 100, 000 downloads. So there may be many users who have installed any of these applications on their device.

85 malicious applications

The applications reached the Play Store in March of this year in the form of games. But, in October the developers updated them and introduced malicious code in them. It is then when the danger began for users with any of these applications or games. So far it is not known how Google's security controls have been able to enter and bypass it.

Inside they have a copy of the VK.com SDK that hides a JavaScript code that is in charge of stealing the passwords that users are asked to when they log in. Stolen credentials were sent to hacker-controlled servers. According to studies, it seems that the developers are old acquaintances who have been doing the same for years.

Without a doubt, the security problems in Android are once again evident with this new problem. We hope that Google will take action soon and end the presence of these types of applications in the Play Store. Because they pose a risk to many users.

The Hacker News Font