Once again, Google’s security measures are circumvented and this time it is a truly worrying fact.
Normal use of your mobile device should not pose any risk to your terminal and your data, but given that it is increasingly common to come across cases like the one we will tell you about below, it is worth leaving you some advice. For example, installing an antivirus on your Android phone can help, and if you’re away from home, perhaps follow our tips for connecting to public Wi-Fi safely.
However, we cannot always be prepared against unwanted attacks on our devices. On this occasion, thanks to the information published on the McAfee website, we have learned details about a malware that acts in a very peculiar way and that has managed to make its way into millions of devices.
60 applications and more than 100 million downloads: a dangerous combination
The well-known security company has recently launched a warning about a new kind of software integrated into some apps from the Play Store, around 60 and that you can consult in the link that we have previously provided. It all started with the discovery of a software library named goldosonwhich is capable of gather information of a personal nature and commit what is called ad fraud. The most curious thing is that the developers who used this library were not aware of its negative impact.
McAfee’s research team has discovered a new Android malware called ‘Goldoson, present in 60 legitimate apps with a total of 100 million downloads.#ETCISO #malware #android #research #googleplay https://t.co/4W9HTahfm9
— ET CISO (@ET_CISO) April 17, 2023
The applications that have integrated this library, when installed on a new device, are capable of performing the function that they apparently advertise in the application store, but also collect data about other apps in the terminal, on the connection history Wi-Fi and Bluetooth, in addition to the gps locations through which the user has passed. Even so, this is not the worst that has been discovered.
Maybe you weren’t aware, but it’s not the first time we’ve heard of one of the most dangerous characteristics of Goldoson. In addition to accessing sensitive data, this software, integrated into the malicious app, has the ability to commit fraud through background ad clicks, without the user being aware of what is happening. Take a look at the list of Applications and delete them immediatelysince the problem, although it seems to have been stopped in time, can become an important security hole for your device.