Recently, malware infected one of the app stores Android alternative, APKPure. This allows the perpetrator to distribute Trojan-Dropper to Android devices from the Android app store, the second largest after the Google Play Store.
APKPure app 3.17.18 have tampered with in order to trick users into downloading and installing a malicious app which linked to malicious code in it. Researchers from Doctor Web and Kaspersky say this news.
“This Trojan belongs to a dangerous Android. The Triada malware family is able to download, install and remove software without the user’s consent,” said researcher Doctor Web.
Ads Containing Trojans
According to Kaspersky, APKPure version 3.17.18 has implemented ads from unverified and malicious sources. Next, Ads act as Trojans designed to deliver malware to victim’s devices.
Kaspersky further said APKPure version 3.17.18 contains malicious code. It sucks data from victims’ devices without their knowledge. And pushes advertisements to the device’s lock screen and in the background to generate fraud.
“This component can do a number of things like display advertisements on the lock screen, open browser tabs, gather information about the device and the most unpleasant thing is download other malware,” said Kaspersky’s Igor Golovin.
Download the Application Through the Official Store!
Smartphone users must download the application via the official store. Because unofficial application stores have the potential to support malicious applications. Moreover, they are not safe for user devices.
In response to these findings, APKPure has released a new version, namely version 3.17.19 on April 9, 2021, by removing the dangerous components.
“Fixes potential security issues, making APKPure safer to use,” the application developer was quoted as saying The Hacker News.
Quoted Tech Crunch, APKPure was founded in 2014 which allows users to access all Android apps and games, not found in the official store, Google Play.
APKPure is one of the most popular sites in cyberspace. But cybersecurity experts have long warned against installing apps outside of official stores.
Read now: How to Prevent Malware from Stealing Data from Fake Google Chrome