Wuta Camera, Max Browser, WhatsApp Mods, Spotify Mods, and Minecraft Mods were found to be infected with a Necro Sideloader. All the apps are shown to contain CoralSDK. If you downloaded any of this remove the apps and wipe your phone.
This Android Malware Has Infected Over 11 Million Devices
Submitted 1 month ago by realcaseyrollins@thelemmy.club to technology@lemmy.world
https://lifehacker.com/tech/necro-trojan-malware-has-infected-11-million-android-devices
Comments
Sanctus@lemmy.world 1 month ago
independantiste@sh.itjust.works 1 month ago
This is an article summarizing a Bleeping computer article, which is summarizing the original source which is Kaspersky
LOLjoeWTF@lemmy.world 1 month ago
I find it hilarious that the image is of Google Play and the title used the word “this”. Pretty misleading
sorghum@sh.itjust.works 1 month ago
As someone de-googing, it’s not too far off in my eyes. Apps depending on GSF is a major hindrance.
Teils13@lemmy.eco.br 1 month ago
It is unintentionally correct: Google Play, and its contents, is corporate malware, people should use F-Droid to get safer and free (as in freedom) apps. Neostore is a nice app to access it.
MangoPenguin@lemmy.blahaj.zone 1 month ago
Doesn’t the play store have their “Play Protect” thing they’re always shoving in my face? Why didn’t that pick this up before 11 million people installed the app?
Draconic_NEO@lemmy.world 1 month ago
Because play protect is a piece of shit that is not very reliable. Google mostly uses it to block installation of apps or remove apps that they don’t like such as cracked apps, or apps that are used to crack other apps.
The real malicious apps are typically able to sneak past it.
Zementid@feddit.nl 1 month ago
Isn’t Kaspersky literally Russian Spyware? How have they still any credibility?
pandapoo@sh.itjust.works 1 month ago
No, yes, sorta, but no different than how most, if not all, large American security and tech vendors have either over, or covert, links to the the American Security State.
Kaspersky is a long established pioneer and leader in the security space, hands down one of the best track records over the long run, and you should take their reporting and disclosures seriously.
I’m not saying that to dismiss the very valid concerns about installing Kaspersky on sensitive private sector and government systems, but to contextualize my answer.
On a sort of related note, earlier I said that the American security state has both overt, and covert, links all across the American tech sector.
What that means is that, even if a company holds their principles not compromising their customers or their product, the US government can either get a court order to force it, or they’ll be targeted by something like the Pentagons Signature Reduction program and have sheep dipped employees worked into their organization.
MangoPenguin@lemmy.blahaj.zone 1 month ago
Really every AV software is spyware for whatever country it operates in. Just depends on who you’d rather have your data.
MilitantAtheist@lemmy.world 1 month ago
Whatever. Kaspersky is an FSB spy tool. You should not have any of their software installed on any devices.
paraphrand@lemmy.world 1 month ago
Mods are a classic vector.
aaa@lemmy.sdf.org 1 month ago
i fucking hate titles that start with “This”.
AWittyUsername@lemmy.world 1 month ago
Yeah how to spot a clickbait title.
stefenauris@pawb.social 1 month ago
Like it’s a jeopardy question lol
ohwhatfollyisman@lemmy.world 1 month ago
how would you feel about an article titled,
“This” word in article titles infuriates internet readers
lennivelkant@discuss.tchncs.de 1 month ago
Well, it’s “This”, not This, so I’d say it’s fine.
JoeKrogan@lemmy.world 1 month ago
I’m more of a “that” fan myself