Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Yes, Even Apps from Official App Stores Can Be Malicious

Yes, Even Apps from Official App Stores Can Be Malicious

McAfee recently released a list of 15 applications the company identified as “predatory loan apps” available for download from the Google Play Store. While steps have been taken to remove them from the platform, we can now discuss how mobile applications can be weaponized if a user is not careful.

Let’s start by discussing the current issue of SpyLoan apps.

How Can Malicious Apps Sneak Onto the Play Store?

SpyLoan apps—much like many shopping applications and websites around this time of year—aren’t overtly malicious in the same way that other app-based threats are. These apps commonly work as malware, taking up storage space and exfiltrating data. 

SpyLoan apps operate more insidiously. Instead of installing malicious software and infecting the device, these apps operate as phishing attacks.

These apps work as financial applications, offering highly accessible loans that result in debt and invasions of a user’s privacy. These behaviors are also malicious, but SpyLoan apps can slip past the app store’s checks using social engineering instead of coded threats. As a result, they appear on Google Play and take advantage of the platform’s inherent trust. This trend has been observed (and has grown) since 2023.

This Makes It Crucial to Only Install Trusted Apps

It just goes to show that threats can even slip past the protections that Google has defending its platforms.

This makes it critical to be extremely selective regarding the applications you install, only using trusted sources and installing well-known and reputable software titles—specifically, the legitimate versions.

Warning Signs of Malware on Mobile Devices

There are a few indications to keep an eye out for that your device may be infected.

On the Device Itself:

  • Slower operation
  • Virus alerts
  • Missing storage space
  • Inoperable antivirus software
  • An inoperable device

In the Device’s Browser:

  • Invasive pop-up ads and tabs
  • Your browser redirects to other pages or ads
  • Your homepage or default search change without your permission
  • Virus alerts
  • Unwanted installs

Mobile Apps Can Be Used Offensively in Many Ways

Historically, attackers have used mobile applications in various ways to deliver attacks to mobile devices. From putting up apps and pushing malicious code in an update to phishing, as we see here, you must exercise some judgment before installing any application.

Sign Up For Our Newsletter!

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Business Computing Data Productivity Business Software Innovation Hackers Cloud Network Security User Tips Efficiency Hardware Internet IT Support Malware Privacy Google Email Computer Workplace Tips Phishing IT Services Hosted Solutions Collaboration Users Mobile Device Workplace Strategy Ransomware Quick Tips Small Business Microsoft Cybersecurity Passwords Backup Communication Data Backup Saving Money Smartphone Managed Service Android VoIP Business Management Smartphones Upgrade Mobile Devices communications Disaster Recovery Data Recovery Browser Social Media Windows Microsoft Office Managed IT Services Productivity Current Events Remote Tech Term Network AI Internet of Things Automation Artificial Intelligence Facebook Holiday Gadgets Cloud Computing Covid-19 Remote Work Server Managed Service Provider Miscellaneous Information Outsourced IT Training Employee/Employer Relationship Compliance Encryption Spam Office Windows 10 Business Continuity Data Management Government IT Support Business Technology Bandwidth Windows 10 Virtualization Blockchain Wi-Fi Two-factor Authentication Mobile Office Data Security Apps Vendor Chrome Mobile Device Management Budget Managed Services Gmail Voice over Internet Protocol Apple Networking App Employer-Employee Relationship BYOD Applications Avoiding Downtime Office 365 Access Control Marketing Tip of the week Conferencing WiFi How To BDR Computing Information Technology HIPAA Hacker Virtual Private Network Office Tips Analytics Website Health Augmented Reality Help Desk Storage Password Retail Bring Your Own Device Healthcare Big Data Managed IT Services Operating System Risk Management Router Computers Display Printer Paperless Office Windows 11 Infrastructure 2FA Monitoring Excel Document Management Firewall Remote Workers Telephone Scam The Internet of Things Data loss Going Green Cooperation Free Resource Social Project Management Windows 7 Patch Management Cybercrime Save Money Microsoft 365 Remote Monitoring End of Support Vulnerability Customer Service Vendor Management Solutions Physical Security Virtual Desktop Modem Data storage LiFi User Tip Wireless Technology Processor Computer Repair Mobile Security Holidays Outlook Money Data Storage Word Smart Technology Supply Chain Humor Video Conferencing Machine Learning Managed Services Provider Saving Time Virtual Machines Professional Services Sports Mouse Managed IT Service Safety Maintenance Downloads Administration Antivirus iPhone Licensing Entertainment Vulnerabilities Data Privacy Images 101 Settings Printing Wireless Content Filtering Multi-Factor Authentication Robot Mobility Telephone System Customer Relationship Management Cost Management YouTube Cryptocurrency IT Management Hacking Meetings VPN Employees Presentation Integration Google Wallet Username Managing Costs Amazon Point of Sale eCommerce Black Friday SSID Windows 8 IP Address Laptop Database Surveillance Virtual Assistant Outsource IT Media Drones Network Management Tech Support IT Technicians Virtual Machine Environment Cookies Monitors Cyber Monday Medical IT Proxy Server Reviews Halloween Tactics Development Recovery Hotspot Transportation Small Businesses Hard Drives Websites Mirgation Hypervisor Displays Nanotechnology Optimization PowerPoint Shopping Domains Hacks SharePoint Scary Stories Addiction Electronic Medical Records Language Employer/Employee Relationships Outsourcing Navigation Management PCI DSS Refrigeration Fun Chatbots Lenovo Gig Economy Public Speaking Screen Reader Writing Distributed Denial of Service Workplace Deep Learning Lithium-ion battery Service Level Agreement Internet Service Provider Virtual Reality Computing Infrastructure Teamwork Hiring/Firing Private Cloud Identity Entrepreneur Evernote Paperless Education Server Management Regulations Compliance Superfish Bookmark Identity Theft Smart Tech Memes Co-managed IT Mobile Computing Download Net Neutrality Twitter Alerts SQL Server Technology Care Error History Business Communications Financial Data Undo Search Browsers Smartwatch Connectivity IT Social Engineering Break Fix Scams Best Practice Buisness Upload Procurement Remote Computing Azure Hybrid Work Cyber security Multi-Factor Security Tech Human Resources Legal IT solutions Social Network Telework Business Growth CES Tablet IoT Communitications Dark Web Cables Trends Supply Chain Management Application Alert Cortana File Sharing Regulations Dark Data Google Calendar Term Google Apps Managed IT Customer Resource management FinTech Alt Codes Data Analysis IBM Star Wars IT Assessment How To Microsoft Excel IT Maintenance Downtime Gamification Flexibility Notifications Staff Value Business Intelligence Travel Social Networking Legislation Shortcuts Hosted Solution Organization Typing Techology Fileless Malware Digital Security Cameras Google Maps Smart Devices Ransmoware Content Remote Working Wearable Technology Memory Vendors Knowledge Unified Threat Management Motherboard Data Breach Comparison Google Play Be Proactive Google Drive Health IT Competition Unified Threat Management Directions Videos Assessment Electronic Health Records Permissions Workforce 5G Wasting Time Threats Experience Trend Micro Network Congestion Specifications Security Cameras Workplace Strategies Google Docs Unified Communications Bitcoin User Error Microchip Running Cable Internet Exlporer Software as a Service User Fraud Meta

Blog Archive