Menu
Google removes 'porn clicker' malware from Play Store

Google removes 'porn clicker' malware from Play Store

The fake apps visit porn sites in order to click on ads

Google has removed more than 50 apps that contain a malware component that clicks on ads on pornographic websites.

Google has removed more than 50 apps that contain a malware component that clicks on ads on pornographic websites.

Google has removed dozens of apps from its Play Store that purport to be games but secretly click on advertisements on pornographic websites.

Security company Eset found 51 new apps that contained the "porn clicker" component, which it first discovered in April in a fake app mimicking a video app called Dubsmash.

Over the last three months, some 60 fake apps have been downloaded 210,000 times, showing how common it is for users to stumble across and download them.

"Following ESET's notification, Google has pulled the malware from the Play Store and also reports some of them as potentially harmful applications using its built-in security service," wrote Lukas Stefanko, an Eset malware researcher.

The bogus apps do not try to steal authentication credentials. If downloaded, the application presents itself as game or system application. It runs in the background and accesses porn websites and clicks on ads. The app could eat up data allowances on a person's mobile phone account.

Google scans apps uploaded to its Play Store using technology called Bouncer. The automated scan checks an app for five minutes, performing a dynamic analysis of its code, according to Trend Micro. But apps that do not misbehave in that time period may not be caught.

Although Google can catch malicious apps, malware authors have become more clever in finding ways to avoid Bouncer, which has apparently happened with the porn clicker applications.

This time around, bogus versions of Dubsmash were uploaded again along with fake versions of other legitimate apps including Pou 2, Clash of Clans 2, Subway Surfers 2, Subway Surfers 3, Minecraft 3, Flappy Birds and Hay Day 2. The harmful apps were available for almost a week.

Since it's hard for users to see if an app is malicious, Eset recommended that people pay close attention to the reviews of apps, which may provide a clue if a particular app is suspicious.

"Hopefully, Google is doing its best to fix this issue and find a way to prevent the developers of these porn clickers from publishing them to the Play Store," Eset wrote.

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk

Subscribe here for up-to-date channel news

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags Googlesecurityeset

Featured

Slideshows

StorageCraft celebrates high achievers at its inaugural A/NZ Partner Awards

StorageCraft celebrates high achievers at its inaugural A/NZ Partner Awards

Revealed at a glitzy bash in Sydney at the Ivy Penthouse, the first StorageCraft Partner Awards locally saw the vendor honour its top-performing partners with ASI Solutions, SMBiT Pro, Webroot, ACA Pacific and Soft Solutions New Zealand taking home the top awards. Photos by Maria Stefina.

StorageCraft celebrates high achievers at its inaugural A/NZ Partner Awards
Kiwi resellers make a splash on Synnex and Lenovo RotoVegas road trip

Kiwi resellers make a splash on Synnex and Lenovo RotoVegas road trip

​Synnex and Lenovo hosted 18 resellers for an action-packed weekend adventure in RotoVegas, taking in white water rafting on the Kaituna River, as well as quad biking and dinner at Stratosfare​, overlooking Lake Rotorua at the top of Mount Ngongotaha​. Photos by Synnex.

Kiwi resellers make a splash on Synnex and Lenovo RotoVegas road trip
Show Comments