You are here: Blog Josh Coppage Yes, Even Apps from Official App Stores Can Be Malicious

Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Yes, Even Apps from Official App Stores Can Be Malicious

Voyage Technology Blog Security
Yes, Even Apps from Official App Stores Can Be Malicious

McAfee recently released a list of 15 applications the company identified as “predatory loan apps” available for download from the Google Play Store. While steps have been taken to remove them from the platform, we can now discuss how mobile applications can be weaponized if a user is not careful.

Let’s start by discussing the current issue of SpyLoan apps.

How Can Malicious Apps Sneak Onto the Play Store?

SpyLoan apps—much like many shopping applications and websites around this time of year—aren’t overtly malicious in the same way that other app-based threats are. These apps commonly work as malware, taking up storage space and exfiltrating data. 

SpyLoan apps operate more insidiously. Instead of installing malicious software and infecting the device, these apps operate as phishing attacks.

These apps work as financial applications, offering highly accessible loans that result in debt and invasions of a user’s privacy. These behaviors are also malicious, but SpyLoan apps can slip past the app store’s checks using social engineering instead of coded threats. As a result, they appear on Google Play and take advantage of the platform’s inherent trust. This trend has been observed (and has grown) since 2023.

This Makes It Crucial to Only Install Trusted Apps

It just goes to show that threats can even slip past the protections that Google has defending its platforms.

This makes it critical to be extremely selective regarding the applications you install, only using trusted sources and installing well-known and reputable software titles—specifically, the legitimate versions.

Warning Signs of Malware on Mobile Devices

There are a few indications to keep an eye out for that your device may be infected.

On the Device Itself:

  • Slower operation
  • Virus alerts
  • Missing storage space
  • Inoperable antivirus software
  • An inoperable device

In the Device’s Browser:

  • Invasive pop-up ads and tabs
  • Your browser redirects to other pages or ads
  • Your homepage or default search change without your permission
  • Virus alerts
  • Unwanted installs

Mobile Apps Can Be Used Offensively in Many Ways

Historically, attackers have used mobile applications in various ways to deliver attacks to mobile devices. From putting up apps and pushing malicious code in an update to phishing, as we see here, you must exercise some judgment before installing any application.

Tweet
Tags:
Mobile Device Security Software

Sign Up For Our Newsletter!

Blog Categories

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Data Business Computing Business Productivity Software Innovation Cloud Hackers Hardware Network Security Efficiency User Tips Internet Malware IT Support Privacy Google Email Workplace Tips Computer Phishing IT Services Collaboration Hosted Solutions Users Workplace Strategy Ransomware Mobile Device Microsoft Small Business Quick Tips Passwords Backup Communication Cybersecurity Productivity Saving Money Smartphone Managed Service Data Backup Android Upgrade Business Management Smartphones VoIP AI Data Recovery Mobile Devices communications Windows Disaster Recovery Browser Social Media Microsoft Office Managed IT Services Current Events Network Tech Term Internet of Things Remote Facebook Artificial Intelligence Automation Information Miscellaneous Gadgets Cloud Computing Holiday Training Covid-19 Server Managed Service Provider Remote Work Compliance Outsourced IT IT Support Spam Encryption Employee/Employer Relationship Office Windows 10 Government Business Continuity Data Management Virtualization Bandwidth Business Technology Blockchain Wi-Fi Windows 10 Two-factor Authentication Data Security Apps Mobile Office Vendor Networking Chrome Managed Services Budget Voice over Internet Protocol Employer-Employee Relationship BYOD Apple App Tip of the week Mobile Device Management Gmail How To WiFi Office 365 BDR Conferencing Hacker Access Control Avoiding Downtime Marketing Computing HIPAA Information Technology Applications Managed IT Services Office Tips Analytics Help Desk Big Data Augmented Reality Storage Password Healthcare Bring Your Own Device Virtual Private Network Computers 2FA Health Website Operating System Retail Router Risk Management The Internet of Things Monitoring Patch Management Social Save Money Remote Monitoring Remote Workers Vulnerability End of Support Vendor Management Telephone Physical Security Customer Service Display Free Resource Windows 11 Printer Project Management Cooperation Paperless Office Windows 7 Infrastructure Going Green Microsoft 365 Excel Solutions Document Management Cybercrime Firewall Scam Data loss Mobile Security Safety Virtual Desktop Processor Holidays Data Privacy Data storage LiFi Data Storage Outlook Video Conferencing Managed Services Provider Smart Technology Money Virtual Machines Professional Services Robot Humor Saving Time IT Management Sports Managed IT Service Customer Relationship Management Mouse VPN Meetings iPhone Downloads Licensing Hacking Administration Vulnerabilities Computer Repair Presentation Entertainment Images 101 Supply Chain Wireless Technology Multi-Factor Authentication Mobility Settings Telephone System Printing Machine Learning Wireless Cost Management Content Filtering Word Employees YouTube Integration Maintenance Cryptocurrency Antivirus User Tip Modem Google Wallet Reviews Database Medical IT Transportation Google Apps IT Technicians Undo Development Tablet Windows 8 Laptop Proxy Server Hypervisor Alert IT Maintenance Cookies Cyber Monday Hotspot Drones Shopping Managed IT Optimization File Sharing Business Intelligence Tactics PowerPoint Dark Data Employer/Employee Relationships How To Shortcuts Mirgation PCI DSS Halloween Notifications Ransmoware Nanotechnology Navigation Language Application Gig Economy Travel Vendors Addiction Management Teamwork Be Proactive Chatbots Techology Internet Service Provider Google Maps Hacks Regulations Compliance Scary Stories Workforce Screen Reader Evernote Distributed Denial of Service IBM Computing Infrastructure Memes Unified Threat Management Threats Fun Service Level Agreement SQL Server Workplace Strategies Identity Unified Threat Management Deep Learning Net Neutrality Financial Data Bookmark History Meta Smart Tech Alerts Smartwatch Education IT Amazon Download Network Congestion Azure Competition User Error Procurement Mobile Computing Telework Browsers Cyber security Outsource IT Connectivity Tech Break Fix Media CES Communitications Point of Sale Environment Search Upload Social Network Multi-Factor Security Best Practice Supply Chain Management User FinTech Network Management Buisness Tech Support Small Businesses IoT Term Dark Web Monitors Legal IT solutions IT Assessment Displays Trends Flexibility Customer Resource management Value Regulations Google Calendar Business Growth IP Address Organization Data Analysis Websites Outsourcing Star Wars Microsoft Excel Gamification Staff Digital Security Cameras Smart Devices Cortana Remote Working Memory Electronic Medical Records Workplace Social Networking Legislation SharePoint Alt Codes Recovery Downtime Fileless Malware Data Breach Hiring/Firing Google Play Content Writing Paperless Wearable Technology Hard Drives Videos Lenovo Hosted Solution Electronic Health Records Health IT Wasting Time Virtual Reality Co-managed IT Motherboard Comparison Domains Typing Permissions Server Management Directions Trend Micro Private Cloud Technology Care Assessment Security Cameras Business Communications Google Drive Refrigeration Superfish Software as a Service Identity Theft Knowledge Managing Costs Twitter Scams Specifications Public Speaking Fraud Lithium-ion battery Microchip eCommerce Error Hybrid Work 5G Internet Exlporer SSID Username Virtual Assistant Social Engineering Human Resources Google Docs Unified Communications Entrepreneur Surveillance Experience Bitcoin Running Cable Virtual Machine Remote Computing Cables Black Friday

Blog Archive

2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015