Latest in Gear

Image credit: Getty

Android malware found inside seemingly innocent QR code apps

Users downloaded it 500,000 times before it was caught.
470 Shares
Share
Tweet
Share
Save

Sponsored Links

Getty

Google is getting better at keeping Android malware out of the Play Store, and that's leading attackers to use more sophisticated disguises for their rogue apps. SophosLabs has proof: it just detailed a recent ad-spawning malware strain, Andr/HiddnAd-AJ, that slipped into Google Play through innocent-looking QR code and compass apps. While that's nothing new by itself, the malware used a pair of tricks to feign innocence. The hostile code was buried in what looked like a regular Android programming library, and it didn't kick in until 6 hours after you've installed it.

The Google team has since pulled the malware-laden apps, and it typically learns from incidents like this as it refines its anti-malware scanning tools. And Sophos still recommends using Google Play if you can -- while it's not perfect, its scrutiny still make it safer than many third-party stores. Incidents like this mainly serve as reminders to stay skeptical and double-check the nature of apps on Google Play, even if they seem legitimate on the surface.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
470 Shares
Share
Tweet
Share
Save

Popular on Engadget

ESA opens plant that turns moondust into oxygen

ESA opens plant that turns moondust into oxygen

View
Opera accused of offering predatory loans through Android apps

Opera accused of offering predatory loans through Android apps

View
Huawei will use TomTom for maps now that it's cut off from Google

Huawei will use TomTom for maps now that it's cut off from Google

View
Elon Musk expects SpaceX's first crewed mission between April and June

Elon Musk expects SpaceX's first crewed mission between April and June

View
Facebook says glitch led to rude translation of Chinese leader's name

Facebook says glitch led to rude translation of Chinese leader's name

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr