You are here: Blog Josh Coppage Yes, Even Apps from Official App Stores Can Be Malicious

Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Yes, Even Apps from Official App Stores Can Be Malicious

Voyage Technology Blog Security
Yes, Even Apps from Official App Stores Can Be Malicious

McAfee recently released a list of 15 applications the company identified as “predatory loan apps” available for download from the Google Play Store. While steps have been taken to remove them from the platform, we can now discuss how mobile applications can be weaponized if a user is not careful.

Let’s start by discussing the current issue of SpyLoan apps.

How Can Malicious Apps Sneak Onto the Play Store?

SpyLoan apps—much like many shopping applications and websites around this time of year—aren’t overtly malicious in the same way that other app-based threats are. These apps commonly work as malware, taking up storage space and exfiltrating data. 

SpyLoan apps operate more insidiously. Instead of installing malicious software and infecting the device, these apps operate as phishing attacks.

These apps work as financial applications, offering highly accessible loans that result in debt and invasions of a user’s privacy. These behaviors are also malicious, but SpyLoan apps can slip past the app store’s checks using social engineering instead of coded threats. As a result, they appear on Google Play and take advantage of the platform’s inherent trust. This trend has been observed (and has grown) since 2023.

This Makes It Crucial to Only Install Trusted Apps

It just goes to show that threats can even slip past the protections that Google has defending its platforms.

This makes it critical to be extremely selective regarding the applications you install, only using trusted sources and installing well-known and reputable software titles—specifically, the legitimate versions.

Warning Signs of Malware on Mobile Devices

There are a few indications to keep an eye out for that your device may be infected.

On the Device Itself:

  • Slower operation
  • Virus alerts
  • Missing storage space
  • Inoperable antivirus software
  • An inoperable device

In the Device’s Browser:

  • Invasive pop-up ads and tabs
  • Your browser redirects to other pages or ads
  • Your homepage or default search change without your permission
  • Virus alerts
  • Unwanted installs

Mobile Apps Can Be Used Offensively in Many Ways

Historically, attackers have used mobile applications in various ways to deliver attacks to mobile devices. From putting up apps and pushing malicious code in an update to phishing, as we see here, you must exercise some judgment before installing any application.

Tweet
Tags:
Mobile Device Security Software

Sign Up For Our Newsletter!

Blog Categories

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Data Business Computing Business Productivity Software Innovation Cloud Hackers Hardware Efficiency Network Security User Tips Internet Malware IT Support Privacy Google Email Workplace Tips Computer Phishing IT Services Collaboration Hosted Solutions Users Workplace Strategy Ransomware Mobile Device Microsoft Small Business Quick Tips Productivity Passwords Backup Cybersecurity Saving Money Communication Managed Service Data Backup Smartphone Android Upgrade Business Management Smartphones VoIP AI communications Mobile Devices Data Recovery Windows Disaster Recovery Browser Social Media Managed IT Services Microsoft Office Tech Term Current Events Network Remote Internet of Things Facebook Information Automation Artificial Intelligence Cloud Computing Covid-19 Holiday Miscellaneous Training Gadgets Remote Work Server Managed Service Provider Outsourced IT Compliance Employee/Employer Relationship Spam IT Support Encryption Windows 10 Office Business Continuity Data Management Government Virtualization Wi-Fi Business Technology Bandwidth Windows 10 Blockchain Vendor Apps Two-factor Authentication Mobile Office Data Security BYOD Employer-Employee Relationship Tip of the week Chrome Managed Services Budget Voice over Internet Protocol Apple Networking Mobile Device Management App Gmail HIPAA WiFi Computing Applications Information Technology Access Control Office 365 Hacker Conferencing Avoiding Downtime Marketing How To BDR Operating System Router Big Data Virtual Private Network Risk Management Health 2FA Help Desk Office Tips Analytics Computers Augmented Reality Retail Storage Password Healthcare Website Bring Your Own Device Managed IT Services The Internet of Things Solutions Vendor Management Cybercrime Physical Security Social Display Printer Windows 11 Paperless Office Infrastructure Monitoring Customer Service Excel Document Management Remote Workers Telephone Scam Data loss Cooperation Free Resource Project Management Firewall Windows 7 Going Green Patch Management Microsoft 365 Save Money Remote Monitoring Vulnerability End of Support Content Filtering IT Management Employees VPN YouTube Meetings Integration Cryptocurrency User Tip Modem Computer Repair Mobile Security Processor Holidays Virtual Desktop Customer Relationship Management Data storage LiFi Data Storage Supply Chain Smart Technology Video Conferencing Outlook Managed Services Provider Machine Learning Hacking Presentation Virtual Machines Money Saving Time Professional Services Humor Wireless Technology Managed IT Service Maintenance Antivirus Sports Downloads Mouse iPhone Licensing Entertainment Word Vulnerabilities Administration Data Privacy Images 101 Multi-Factor Authentication Telephone System Mobility Robot Cost Management Settings Safety Printing Wireless Videos Electronic Health Records Unified Threat Management Directions Workforce Hosted Solution Assessment Permissions Typing Wasting Time Threats Trend Micro Security Cameras Workplace Strategies Network Congestion Specifications Knowledge Fraud Software as a Service Google Drive User Error Microchip Meta Internet Exlporer Managing Costs Amazon Username Application eCommerce SSID Point of Sale 5G Black Friday Experience IBM Surveillance Google Docs Virtual Assistant Outsource IT Unified Communications Database Virtual Machine Environment Bitcoin Network Management Media Running Cable Tech Support IT Technicians Reviews Google Wallet Proxy Server Medical IT Cookies Monitors Cyber Monday Hotspot Development Transportation Small Businesses Tactics Hypervisor Displays Windows 8 Laptop Websites Mirgation Shopping Competition Optimization Drones PowerPoint Nanotechnology Electronic Medical Records Language SharePoint Employer/Employee Relationships Outsourcing Addiction Management Navigation Halloween Chatbots PCI DSS Gig Economy Lenovo Workplace Screen Reader Writing Distributed Denial of Service Virtual Reality Computing Infrastructure Internet Service Provider User Teamwork Hiring/Firing Service Level Agreement Hacks Server Management Evernote Paperless Scary Stories Private Cloud Identity Regulations Compliance Memes Superfish Bookmark Co-managed IT Identity Theft Smart Tech Fun Twitter Alerts IP Address Net Neutrality SQL Server Technology Care Deep Learning Download History Business Communications Error Financial Data Smartwatch IT Browsers Scams Education Connectivity Social Engineering Break Fix Remote Computing Procurement Recovery Azure Hybrid Work Upload Cyber security Mobile Computing Social Network Tech Human Resources Multi-Factor Security Telework Hard Drives CES Domains Communitications Cables Tablet IoT Search Dark Web Alert Supply Chain Management Best Practice Trends Managed IT Customer Resource management Term Google Apps Buisness File Sharing Regulations Dark Data Google Calendar FinTech Refrigeration Public Speaking IT Assessment Legal Data Analysis IT Maintenance IT solutions Star Wars How To Microsoft Excel Notifications Staff Lithium-ion battery Flexibility Value Business Intelligence Business Growth Gamification Entrepreneur Shortcuts Travel Social Networking Legislation Organization Digital Security Cameras Smart Devices Techology Fileless Malware Ransmoware Google Maps Cortana Wearable Technology Remote Working Memory Vendors Alt Codes Content Undo Data Breach Health IT Google Play Be Proactive Downtime Unified Threat Management Motherboard Comparison

Blog Archive

2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015