Wuta Camera, Max Browser, WhatsApp Mods, Spotify Mods, and Minecraft Mods were found to be infected with a Necro Sideloader. All the apps are shown to contain CoralSDK. If you downloaded any of this remove the apps and wipe your phone.
This Android Malware Has Infected Over 11 Million Devices
Submitted 3 days ago by realcaseyrollins@thelemmy.club to technology@lemmy.world
https://lifehacker.com/tech/necro-trojan-malware-has-infected-11-million-android-devices
Comments
Sanctus@lemmy.world 3 days ago
independantiste@sh.itjust.works 3 days ago
This is an article summarizing a Bleeping computer article, which is summarizing the original source which is Kaspersky
LOLjoeWTF@lemmy.world 3 days ago
I find it hilarious that the image is of Google Play and the title used the word “this”. Pretty misleading
sorghum@sh.itjust.works 3 days ago
As someone de-googing, it’s not too far off in my eyes. Apps depending on GSF is a major hindrance.
Teils13@lemmy.eco.br 3 days ago
It is unintentionally correct: Google Play, and its contents, is corporate malware, people should use F-Droid to get safer and free (as in freedom) apps. Neostore is a nice app to access it.
MangoPenguin@lemmy.blahaj.zone 2 days ago
Doesn’t the play store have their “Play Protect” thing they’re always shoving in my face? Why didn’t that pick this up before 11 million people installed the app?
Draconic_NEO@lemmy.world 2 days ago
Because play protect is a piece of shit that is not very reliable. Google mostly uses it to block installation of apps or remove apps that they don’t like such as cracked apps, or apps that are used to crack other apps.
The real malicious apps are typically able to sneak past it.
MilitantAtheist@lemmy.world 2 days ago
Whatever. Kaspersky is an FSB spy tool. You should not have any of their software installed on any devices.
Zementid@feddit.nl 3 days ago
Isn’t Kaspersky literally Russian Spyware? How have they still any credibility?
pandapoo@sh.itjust.works 3 days ago
No, yes, sorta, but no different than how most, if not all, large American security and tech vendors have either over, or covert, links to the the American Security State.
Kaspersky is a long established pioneer and leader in the security space, hands down one of the best track records over the long run, and you should take their reporting and disclosures seriously.
I’m not saying that to dismiss the very valid concerns about installing Kaspersky on sensitive private sector and government systems, but to contextualize my answer.
On a sort of related note, earlier I said that the American security state has both overt, and covert, links all across the American tech sector.
What that means is that, even if a company holds their principles not compromising their customers or their product, the US government can either get a court order to force it, or they’ll be targeted by something like the Pentagons Signature Reduction program and have sheep dipped employees worked into their organization.
MangoPenguin@lemmy.blahaj.zone 2 days ago
Really every AV software is spyware for whatever country it operates in. Just depends on who you’d rather have your data.
paraphrand@lemmy.world 3 days ago
Mods are a classic vector.
aaa@lemmy.sdf.org 3 days ago
i fucking hate titles that start with “This”.
AWittyUsername@lemmy.world 3 days ago
Yeah how to spot a clickbait title.
stefenauris@pawb.social 3 days ago
Like it’s a jeopardy question lol
ohwhatfollyisman@lemmy.world 3 days ago
how would you feel about an article titled,
“This” word in article titles infuriates internet readers
lennivelkant@discuss.tchncs.de 2 days ago
Well, it’s “This”, not This, so I’d say it’s fine.
JoeKrogan@lemmy.world 2 days ago
I’m more of a “that” fan myself