Android adware that hides itself
What’s the threat?
Hackers are always looking for sneaky new ways to get malware on to your devices and prevent you from discovering or removing them. The latest trick to hit Android phones and tablets is adware that hides itself on your device, making it seemingly impossible to get rid of.
Uncovered by security firm Sophos, these apps appear as useful tools on the Google Play store – QR code readers, photo-editing apps and so on – but once installed, they do little more than show large, intrusive adverts. In some cases, launching the app will result in a fake error message that says ‘This app is incompatible with your device’.
The problem is that they disguise themselves with names and icons that make them look like legitimate system tools, effectively preventing you from removing them in the usual way.
Sophos has discovered at least 15 apps that behave in this way, which have already been installed on more than 1.3 million devices worldwide.
How can you stay safe?
First, visit Sophos’s blog ( www.snipca.com/33035) and check out the app icons (pictured). If you think you’ve downloaded one, tap Settings, then ‘Apps & notifications’, followed by ‘See all apps’ under ‘Recently opened apps’. Look for any apps that show a generic Android icon (a green robot) and have names that look like system functions, such as ‘Update’ or ‘Back up’. Tap these, then Force Stop. If an Uninstall option is shown, tap this – a real system tool won’t let you uninstall it.
Google has removed all the apps from the Play Store, but Sophos warns that it’s highly likely similar apps are lurking undetected. As ever, we recommend extreme caution when downloading apps from unfamiliar developers. Always read user reviews carefully to watch for warnings of unwelcome activity and be wary of fake four- and five-star ratings.