You are here: Blog Tags Safety

Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Yes, Even Apps from Official App Stores Can Be Malicious

Voyage Technology Blog Security
Yes, Even Apps from Official App Stores Can Be Malicious

McAfee recently released a list of 15 applications the company identified as “predatory loan apps” available for download from the Google Play Store. While steps have been taken to remove them from the platform, we can now discuss how mobile applications can be weaponized if a user is not careful.

Let’s start by discussing the current issue of SpyLoan apps.

How Can Malicious Apps Sneak Onto the Play Store?

SpyLoan apps—much like many shopping applications and websites around this time of year—aren’t overtly malicious in the same way that other app-based threats are. These apps commonly work as malware, taking up storage space and exfiltrating data. 

SpyLoan apps operate more insidiously. Instead of installing malicious software and infecting the device, these apps operate as phishing attacks.

These apps work as financial applications, offering highly accessible loans that result in debt and invasions of a user’s privacy. These behaviors are also malicious, but SpyLoan apps can slip past the app store’s checks using social engineering instead of coded threats. As a result, they appear on Google Play and take advantage of the platform’s inherent trust. This trend has been observed (and has grown) since 2023.

This Makes It Crucial to Only Install Trusted Apps

It just goes to show that threats can even slip past the protections that Google has defending its platforms.

This makes it critical to be extremely selective regarding the applications you install, only using trusted sources and installing well-known and reputable software titles—specifically, the legitimate versions.

Warning Signs of Malware on Mobile Devices

There are a few indications to keep an eye out for that your device may be infected.

On the Device Itself:

  • Slower operation
  • Virus alerts
  • Missing storage space
  • Inoperable antivirus software
  • An inoperable device

In the Device’s Browser:

  • Invasive pop-up ads and tabs
  • Your browser redirects to other pages or ads
  • Your homepage or default search change without your permission
  • Virus alerts
  • Unwanted installs

Mobile Apps Can Be Used Offensively in Many Ways

Historically, attackers have used mobile applications in various ways to deliver attacks to mobile devices. From putting up apps and pushing malicious code in an update to phishing, as we see here, you must exercise some judgment before installing any application.

Tweet
Tags:
Mobile Device Security Software

Sign Up For Our Newsletter!

Blog Categories

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Data Business Computing Business Productivity Software Innovation Cloud Hackers Hardware Network Security Efficiency User Tips Internet Malware IT Support Privacy Google Email Workplace Tips Computer Phishing IT Services Collaboration Hosted Solutions Users Workplace Strategy Ransomware Mobile Device Microsoft Small Business Passwords Backup Quick Tips Saving Money Communication Cybersecurity Productivity Smartphone Managed Service Data Backup Android Upgrade VoIP AI Business Management Smartphones Data Recovery communications Mobile Devices Windows Disaster Recovery Browser Social Media Microsoft Office Managed IT Services Current Events Network Internet of Things Remote Tech Term Information Facebook Artificial Intelligence Automation Covid-19 Miscellaneous Cloud Computing Gadgets Holiday Training Server Managed Service Provider Remote Work Outsourced IT Compliance Encryption Employee/Employer Relationship Spam IT Support Office Windows 10 Data Management Government Business Continuity Blockchain Windows 10 Wi-Fi Virtualization Bandwidth Business Technology Mobile Office Vendor Data Security Two-factor Authentication Apps Tip of the week Apple App Mobile Device Management Gmail Networking BYOD Employer-Employee Relationship Chrome Budget Managed Services Voice over Internet Protocol Avoiding Downtime Marketing HIPAA Applications How To Computing BDR WiFi Information Technology Office 365 Conferencing Hacker Access Control Website Retail Router Operating System Managed IT Services 2FA Risk Management Big Data Help Desk Analytics Office Tips Augmented Reality Virtual Private Network Storage Computers Password Health Bring Your Own Device Healthcare Cooperation Document Management Free Resource Project Management Going Green Windows 7 Scam Firewall Microsoft 365 Data loss Windows 11 Cybercrime Solutions The Internet of Things Excel Patch Management Save Money Monitoring Remote Monitoring Social Vulnerability End of Support Vendor Management Physical Security Display Customer Service Printer Telephone Paperless Office Remote Workers Infrastructure iPhone Machine Learning Administration Vulnerabilities Telephone System Word Cost Management Images 101 Maintenance Antivirus Multi-Factor Authentication Settings Mobility Wireless Printing Content Filtering Safety YouTube User Tip Supply Chain Modem Mobile Security Employees Cryptocurrency Processor Integration Robot Virtual Desktop Data storage LiFi Smart Technology Holidays IT Management VPN Outlook Data Storage Meetings Saving Time Customer Relationship Management Money Video Conferencing Humor Managed Services Provider Managed IT Service Virtual Machines Computer Repair Professional Services Data Privacy Hacking Downloads Presentation Licensing Sports Mouse Entertainment Wireless Technology Trends IP Address SharePoint Smartwatch Mobile Computing IT Electronic Medical Records Vendors Azure Customer Resource management Search Be Proactive Regulations Google Calendar Procurement Microsoft Excel Lenovo Telework Best Practice Cyber security Data Analysis Writing Tech Workforce Star Wars Gamification Staff Recovery CES Communitications Virtual Reality Buisness Threats Private Cloud IT solutions Workplace Strategies Social Networking Hard Drives Legislation Server Management Legal Supply Chain Management Superfish FinTech Identity Theft Business Growth Fileless Malware Term Meta Domains Content Wearable Technology IT Assessment Twitter Amazon Flexibility Error Value Health IT Cortana Motherboard Refrigeration Comparison Permissions Organization Alt Codes Directions Social Engineering Outsource IT Assessment Public Speaking Environment Lithium-ion battery Media Digital Security Cameras Smart Devices Remote Computing Downtime Remote Working Hosted Solution Memory Specifications Entrepreneur Fraud Tablet Typing Data Breach Microchip Google Play Small Businesses Internet Exlporer Displays Username Videos Electronic Health Records Alert File Sharing Wasting Time Dark Data Knowledge Undo Black Friday Managed IT Google Drive Trend Micro How To Security Cameras Outsourcing Database 5G IT Technicians Software as a Service Notifications Google Docs Travel Unified Communications Managing Costs Proxy Server Experience Workplace Cookies Cyber Monday Hotspot Techology Google Maps Bitcoin eCommerce Running Cable SSID Hiring/Firing Tactics Virtual Assistant Paperless Mirgation Application Google Wallet Surveillance Unified Threat Management Virtual Machine Co-managed IT Nanotechnology IBM Language Unified Threat Management Reviews Windows 8 Laptop Medical IT Technology Care Addiction Transportation Management Business Communications Chatbots Drones Development Hypervisor Network Congestion Scams Screen Reader Distributed Denial of Service Computing Infrastructure User Error Shopping Optimization Halloween PowerPoint Hybrid Work Service Level Agreement Employer/Employee Relationships Human Resources Identity PCI DSS Point of Sale Bookmark Navigation Cables Smart Tech Competition Alerts Gig Economy Hacks Scary Stories Download Tech Support Teamwork Fun Google Apps Network Management Internet Service Provider Regulations Compliance Deep Learning Browsers Monitors Evernote IT Maintenance Connectivity Break Fix User Memes Business Intelligence Upload Websites Education SQL Server Social Network Shortcuts Multi-Factor Security Net Neutrality Financial Data History Ransmoware IoT Dark Web

Blog Archive

2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015