Three million+ Android users must uninstall these apps after Google let them lurk in the Play Store

Written by admin

A terribly widespread new threat to mobile security is discovered and made publicand as much as Google can generally insist that it does its best to protect your money and data, but that certainly didn’t happen in this particular case.

Called by “Autolycos” the cybersecurity expert who made it alarming but oh-so-famous discovery over a year ago (!!!), the virus works in an insidious way reminiscent of the Joker malware that has been in the news regularly for the past few years and has stolen money from millions upon millions of unsuspecting Android users.

The threat, the list and the dazzling numbers

Unfortunately, the number of potential Autolycos victims jumped into the millions and months went by, and Google did nothing to thwart this new flea plan. While the search giant was reportedly aware of the existence of eight malicious apps in the official Play Store early on, it took about six months for six of these titles to disappear, with the last two disappearing only this Thursday.

While it’s impossible to know exactly how many users have had their Android devices infected and their bank accounts drained as a direct result of Google’s slowness in dealing with this situation, it’s safe to assume that the apps below never got that impressive download numbers would have reached if they were put out (much) earlier:
  • Vlog Star Video Editor – 1 Million+
  • Creative 3D Launcher – 1 Million+
  • Funny Camera – 500,000+
  • Wow Beauty Camera – 100,000+
  • Gif Emoji Keyboard – 100,000+
  • Razer Keyboard & Theme – 50,000+
  • Freeglow Camera 1.0.0 – 5,000+
  • Coco Camera v1.1 – 1,000+

All in all, Evina’s Maxime Ingrao estimates that this malware-spreading campaign affected more than three million devices, with the owners of said Androids subscribing to fake “premium” services without their knowledge or consent. Many of those users may still be paying for “subscriptions” that they don’t want, need, or even have any idea about.

Protection is everything

As always, you are advised to check the list of apps installed on your phone or tablet and remove all titles that have been confirmed as malicious. Going forward, be extra careful with what you download, browsing user reviews looking for obvious red flags like a low average score or lots of (fake) 5 star ratings combined with lots of (potentially true) 1 star degrees.

As for privacy-protecting and security-enhancing tools, ExpressVPN remains your best friend, especially with a risk-free 30-day money-back guarantee. Meanwhile, Google clearly can’t be trusted to give you the most basic level of protection against the most obvious threats, so the best course of action is generally to assume you’re on your own.

Also, try to avoid over-hyped and over-promoted apps on Facebook, Instagram and other social media platforms, which seem to be the favorite spots for many bad actors behind these kinds of shady operations to find their victims. Unfortunately, social networking giants are also not behind you and rarely monitor what kind of apps and products are offered to their users.

Since the “Autolycos” malware has proven to be extremely cunning and discreet in its malicious actions, including accessing a user’s text messages without permission, chances are the above list of compromised Android apps will soon will grow. Hopefully, with (again) negative media coverage of the company, Google will ramp up its virus-fighting and especially virus-removing efforts.

About the author


Leave a Comment