Hundreds of Android Apps on Google Play Store Infected by Xavier Malware

Hundreds of Android Apps on Google Play Store Infected by Xavier Malware



You might have heard researchers urging Android users not to download apps from a third party store since a lot of them contain malware. Now, things have changed as hackers and cyber criminals are bypassing Google’s security implementation on Play Store and uploading apps infected with malware.

The IT security researchers at Trend Mirco have discovered that over 800 Android apps on Google Play store contain a malware called Xavier that is silently stealing personal and financial data of users. The infected apps belong to categories like photo manipulators, utilities, ringtone chargers, anti-virus, volume booster, speed booster, video converter, call recorder, and wallpaper apps downloaded millions of times by users around the world.

The majority of downloads came from countries like Indonesia, Philippines, and Vietnam while some of the downloads attempts were from European countries and the United States.

Features of Xavier Info-Stealing Malware



 The previous variant of Xavier Ad library was a simple adware with an ability to install other APKs silently on the targeted devices, but in the latest release, the malware author has replaced those features with more sophisticated ones, including:
  •     Evade Detection: Xavier is smart enough to escape from being analyzed, from both static and dynamic malware analysis, by checking if it is being running in a controlled environment (Emulator), and using data and communication encryptions.
  •     Remote Code Execution: The malware has been designed to download codes from a remote Command & Control (C&C) server, allowing hackers to remotely execute any malicious code on the targeted device.
  •     Info-Stealing Module: Xavier is configured to steal devices and user related information, which includes user’ email address, Device id, model, OS version, country, manufacturer, sim card operator, resolution, and Installed apps.
 Here is a list of 75 infected apps list that Google has already removed from its Play Store, and if you have installed any of these apps on your device, you are advised to remove it immediately


Android malware continues to evolve with more sophisticated and never-seen-before capabilities with every passing day. Just last week, we saw first Android malware with code injecting capabilities making rounds on Google Play Store.


How to Protect Yourself


The easiest way to prevent yourself from being targeted by a clever malware like Xavier, always beware of fishy applications, even when downloading them from official Play Store and try to stick to the trusted brands only.

Moreover, always look at the reviews below left by other users who have downloaded the app and verify app permissions before installing any app and grant those permissions that have are relevant for the app's purpose.

Last but not the least, you are strongly advised to always keep a good antivirus application on your device that can detect and block such malware before they can infect your device, and keep your device and apps up-to-date.

Comments

Post a Comment

Popular posts from this blog

Yet another Suicide due to the Blue Whale Suicide game!! The game has found its first victim in India.

Image
Yet another Suicide due to the Blue Whale Suicide game!! The game has found its first victim in India. Shocking and gory details have emerged out of the investigations in the suicide of a 14-year-old boy in Mumbai. The suicide could possibly be India's first case of death linked to the social media challenge called Blue Whale.      What is the Blue Whale Challenge? The Blue Whale game or Blue Whale Challenge is believed to be a suicide game wherein a group of administrators or a certain curator gives a participant a task to complete daily — for a period of 50 days — the final of which is the participant committing suicide. Participants are expected to share photos of the challenges/tasks completed by them. These daily tasks start off easy — such as listening to certain genres of music, waking up at odd hours, watching a horror movie, among others, and then slowly escalate to carving out shapes on one’s skin, self-mutilation and eventually suicide. There
Read more

Ultimate Modded android apps post[Gbwhatsapp|OGinsta+|OGYoutube][Direct Download Link][NO adds]

Image
Ultimate Modded android apps post Hello guys in this post you will get the Direct Download link of all the useful modded apps.Now no need to search Different website for Download Link of Modded apps. You will get all the apps in this one ultimate post. *Gbwhatsapp Download link updated*OG telegram telegram Download link added* WHY DIRECT DOWNLOAD LINK ?WHY NOT SHORT URLs?WHY THERE ARE NO AD'S ON YOUR BLOG? ONE ANSWER FOR ALL THESE..THIS BLOG IS FOR EDUCATIONAL PURPOSE AND FOR EFFECTIVE EXPERIENCE FOR MY READERS.    Don't forget to Bookmark this post as the latest version of the MOD APPS will be updated regularly  Also Subscribe to this blog by Clicking on the Subscribe Button on the top of this blog. Watch this video, How to     What are modded apps? Mo dded apps are basically mod of the regular apps, which includes additional features,some unlocked features and pro features. Does it harm your phone? NO till now I haven't encount
Read more

[GoldenEye]DOS attack any website using the most powerful tool GoldenEye[kali tutorials]

Image
[GoldenEye]DOS attack any website using the most powerful tool GoldenEye[Kali Linux] This tool will guaranteedly take down any website What is DOS attack? Denial-of-service attack  In computing , a denial-of-service attack ( DoS attack ) is a cyber-attack where the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet . Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled GoldenEye GoldenEye is an python app for SECURITY TESTING PURPOSES ONLY! GoldenEye is a HTTP DoS Test Tool. Attack Vector exploited: HTTP Keep Alive + NoCache   Author: Jan Seidl Website: http://wroot.org/ Without wasting the time to explain about how the tool works and some additional information about
Read more