You are here: Blog Josh Coppage 30 Schools Shut Down In Montana After Cyber Attack

Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Yes, Even Apps from Official App Stores Can Be Malicious

Voyage Technology Blog Security
Yes, Even Apps from Official App Stores Can Be Malicious

McAfee recently released a list of 15 applications the company identified as “predatory loan apps” available for download from the Google Play Store. While steps have been taken to remove them from the platform, we can now discuss how mobile applications can be weaponized if a user is not careful.

Let’s start by discussing the current issue of SpyLoan apps.

How Can Malicious Apps Sneak Onto the Play Store?

SpyLoan apps—much like many shopping applications and websites around this time of year—aren’t overtly malicious in the same way that other app-based threats are. These apps commonly work as malware, taking up storage space and exfiltrating data. 

SpyLoan apps operate more insidiously. Instead of installing malicious software and infecting the device, these apps operate as phishing attacks.

These apps work as financial applications, offering highly accessible loans that result in debt and invasions of a user’s privacy. These behaviors are also malicious, but SpyLoan apps can slip past the app store’s checks using social engineering instead of coded threats. As a result, they appear on Google Play and take advantage of the platform’s inherent trust. This trend has been observed (and has grown) since 2023.

This Makes It Crucial to Only Install Trusted Apps

It just goes to show that threats can even slip past the protections that Google has defending its platforms.

This makes it critical to be extremely selective regarding the applications you install, only using trusted sources and installing well-known and reputable software titles—specifically, the legitimate versions.

Warning Signs of Malware on Mobile Devices

There are a few indications to keep an eye out for that your device may be infected.

On the Device Itself:

  • Slower operation
  • Virus alerts
  • Missing storage space
  • Inoperable antivirus software
  • An inoperable device

In the Device’s Browser:

  • Invasive pop-up ads and tabs
  • Your browser redirects to other pages or ads
  • Your homepage or default search change without your permission
  • Virus alerts
  • Unwanted installs

Mobile Apps Can Be Used Offensively in Many Ways

Historically, attackers have used mobile applications in various ways to deliver attacks to mobile devices. From putting up apps and pushing malicious code in an update to phishing, as we see here, you must exercise some judgment before installing any application.

Tweet
Tags:
Mobile Device Security Software

Sign Up For Our Newsletter!

Blog Categories

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Data Business Computing Business Productivity Software Innovation Cloud Hackers Efficiency Hardware Network Security User Tips Internet Malware IT Services IT Support Workplace Tips Privacy Google Computer Phishing Email Workplace Strategy Collaboration Hosted Solutions Small Business Users Backup Managed Service Ransomware Mobile Device Productivity Microsoft Passwords Quick Tips Saving Money Communication AI Cybersecurity Data Backup Smartphone Disaster Recovery Data Recovery Android VoIP Upgrade Business Management Smartphones Mobile Devices communications Windows Social Media Browser Microsoft Office Managed IT Services Network Current Events Tech Term Internet of Things Remote Miscellaneous Information Holiday Automation Artificial Intelligence Facebook Compliance Gadgets Cloud Computing Covid-19 Training Server Remote Work Managed Service Provider Outsourced IT IT Support Spam Encryption Employee/Employer Relationship Office Windows 10 Business Continuity Government Data Management Virtualization Blockchain Wi-Fi Business Technology Windows 10 Bandwidth Apps Data Security Vendor Mobile Office Two-factor Authentication Apple Networking Employer-Employee Relationship App BYOD Mobile Device Management Gmail Tip of the week Chrome Managed Services Voice over Internet Protocol Budget WiFi How To BDR Hacker HIPAA Computing Avoiding Downtime Applications Information Technology Marketing Access Control Office 365 Conferencing Storage Password Big Data Healthcare Bring Your Own Device Managed IT Services Computers Operating System Router Physical Security Website Virtual Private Network Risk Management Health 2FA Help Desk Office Tips Analytics Augmented Reality Retail Telephone Social Scam Data loss Cooperation Free Resource Project Management Windows 7 Going Green Patch Management Customer Service Microsoft 365 Save Money Remote Monitoring Vulnerability End of Support Solutions Vendor Management Cybercrime Display Printer Windows 11 Paperless Office Infrastructure Monitoring Firewall Excel Document Management The Internet of Things Remote Workers Maintenance Antivirus Sports Downloads iPhone Mouse Licensing Vulnerabilities Administration Entertainment Data Privacy Customer Relationship Management Images 101 Mobility Telephone System Robot Multi-Factor Authentication Cost Management Hacking Presentation Settings Printing Wireless Content Filtering Wireless Technology IT Management VPN YouTube Meetings Employees Integration Cryptocurrency User Tip Modem Mobile Security Processor Computer Repair Word Virtual Desktop Holidays Data storage LiFi Data Storage Smart Technology Supply Chain Video Conferencing Outlook Machine Learning Managed Services Provider Professional Services Money Safety Saving Time Virtual Machines Humor Managed IT Service Twitter Download Net Neutrality Alerts SQL Server Technology Care Deep Learning Error Financial Data History Business Communications Break Fix Scams Education Browsers Smartwatch Application Social Engineering Connectivity IT Remote Computing Upload Procurement Azure Hybrid Work Mobile Computing IBM Social Network Telework Cyber security Multi-Factor Security Tech Human Resources Dark Web Cables Tablet CES Search IoT Communitications Alert Trends Supply Chain Management Best Practice Managed IT Buisness File Sharing Customer Resource management FinTech Dark Data Regulations Google Calendar Term Google Apps Star Wars IT Assessment Microsoft Excel IT Maintenance Legal IT solutions Data Analysis How To Competition Notifications Gamification Flexibility Staff Value Business Intelligence Business Growth Legislation Shortcuts Travel Organization Social Networking Smart Devices Ransmoware Techology Google Maps Fileless Malware Digital Security Cameras Cortana Content Remote Working Wearable Technology Memory Vendors Alt Codes Comparison Google Play Be Proactive Downtime Unified Threat Management Health IT User Motherboard Data Breach Assessment Electronic Health Records Permissions Workforce Unified Threat Management Hosted Solution Directions Videos Wasting Time Threats Typing Specifications Security Cameras Workplace Strategies IP Address Network Congestion Trend Micro Internet Exlporer Software as a Service Fraud Meta Google Drive User Error Microchip Knowledge Username Managing Costs Amazon Black Friday SSID Point of Sale Recovery 5G eCommerce Database Surveillance Virtual Assistant Outsource IT Google Docs Unified Communications Hard Drives Experience Domains Running Cable Tech Support IT Technicians Virtual Machine Environment Media Bitcoin Network Management Cyber Monday Medical IT Google Wallet Proxy Server Reviews Monitors Cookies Tactics Development Hotspot Transportation Small Businesses Refrigeration Windows 8 Public Speaking Laptop Websites Mirgation Hypervisor Displays PowerPoint Drones Lithium-ion battery Shopping Nanotechnology Optimization Electronic Medical Records Addiction Entrepreneur Language Employer/Employee Relationships Outsourcing SharePoint Halloween Management PCI DSS Chatbots Navigation Distributed Denial of Service Workplace Lenovo Gig Economy Writing Screen Reader Undo Virtual Reality Service Level Agreement Internet Service Provider Computing Infrastructure Teamwork Hiring/Firing Hacks Server Management Scary Stories Private Cloud Regulations Compliance Identity Evernote Paperless Co-managed IT Superfish Identity Theft Bookmark Fun Smart Tech Memes

Blog Archive

2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015