Skip to main content
  1. Home
  2. Mobile
  3. News

Google Play Store junks malicious beauty camera Android apps that stole pictures

By

Google took down a total of 29 malicious apps for Android that were advertised on the Google Play Store as beauty camera applications, but carried out activities such as stealing the user’s pictures.

The apps were discovered by cybersecurity firm Trend Micro, which said that some of them have already been downloaded millions of times. A large number of the downloads were from users in Asia, particularly in India. In total, the 29 malicious Android apps were downloaded over 4 million times before they were removed from the Google Play Store, with three of them accounting for over 3 million downloads.

Recommended Videos

Trend Micro said that after downloading one of the malicious apps, users will not suspect anything wrong until they try to delete it. One example is a package that will hide the app’s icon to make it more difficult to uninstall it. The apps also used compression archives, also known as packers, to make them hard to analyze. There was also no indication that the apps were the ones behind the issues that users suddenly experienced.

Please enable Javascript to view this content

Some of the malicious apps load full-screen advertisements for fraudulent or pornographic content each time the Android device is unlocked. Others will forward users to phishing websites that will try to steal sensitive information. Some of the attempts to steal contact details of users were disguised as pages for claiming prizes. Trend Micro also discovered that an adult video player, advertised by the apps, did not play any content after it was purchased.

Related

One of the more alarming activities of the malicious Android apps was requesting for users to upload pictures to “beautify” them. The images were uploaded to a private server, and instead of a filtered photo, the app displayed a message that said an update was required. Trend Micro believes that the pictures were stolen, and used for purposes such as making fake social media accounts.

This is far from the first time that security problems were discovered in Android apps. Last year, there were apps that tracked children’s personal data, secretly recorded the smartphone’s screen, and attempted to phish cryptocurrency logins. As always, users can help protect themselves and their sensitive information from malicious apps by only downloading Google Play Store apps made by trusted developers and publishers.

Editors’ Recommendations

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received an NES and a copy of Super Mario Bros. for Christmas when he was four years old, and he has been fascinated…
The Google Messages app is getting a few important safety features
google messages scam identity fraud package delivery spam features detect

Google’s software theme for 2024 has been safety. With the arrival of Android 15, the company added a host of anti-theft measures for phones, and later locked the Find My system behind biometric check. Next in line is the Messages app.

Earlier today, the company announced enhanced scam detection, putting special focus on package delivery scams and job frauds. Package delivery frauds have been on the rise lately, and they are being used for everything from brushing scams to those extorting money in the name of fake package delivery problems.

Read more
The Google Home app is getting a long-overdue feature
The Google Home logo on a Pixel phone.

According to the sleuths over at Android Authority, the Google Home app is about to get a much-needed feature that I'm honestly shocked hasn't been added yet: a search bar.

If you've never used the Google Home app before, it's sort of the command center for all things smart home in the Google smart home ecosystem. If you only have a few smart home devices, it's easy enough to navigate — but if you have an extensive smart home setup, you could have upwards of 50 devices listed in the app. If you don't take time to organize and label them, it gets unwieldy fast.

Read more
The Google Wallet app is about to get a lot more useful
The new Google Wallet app running on an Android phone.

The Google Wallet app for Android is getting a new feature called "Everything Else," which will make it easier to add digital passes. This feature was first announced at Google I/O in May and is expected to be available to all Google Wallet customers in the U.S. by the end of the month. It's currently being rolled out to customers.

Everything Else is replacing Google Wallet's "Photo" option. The feature lets you scan a physical card using your phone's camera. Once you do, artificial intelligence determines what type of card you're scanning. When you take a photo of your physical card, Google will extract the information it can, then let you edit standard fields and add your own.

Read more