Every so often, a set of potentially dangerous apps emerges for mobile device users. Although developers disguise these apps in multiple ways, most have the same goal: to obtain your confidential data or credentials. A recent investigation found up to 15 SpyLoan apps that Android phone users should avoid—or uninstall immediately.
For cyber attackers, it is not always necessary to use the most advanced tech methods. Many times, they resort to simple social engineering, targeting people most likely to fall for it. In this case, SpyLoan apps rely on the promise of money loans with minimal requirements. The alleged loans promised very low interest rates and flexible payment periods.
15 SpyLoan apps managed to reach the Google Play Store for Android
As spotted by McAfee’s mobile research team, the Google Play Store had up to 15 SpyLoan apps that endangered Android users’ privacy. According to the report, these apps had the ability to send data in the background to an external server, without the user being aware of it. The UI tried to create a sense of urgency in people by promoting supposed limited-time offers. The attackers took advantage of this to try to get the user to do what they wanted.
The list of SpyLoan apps detected by McAfee’s team includes the following names:
According to the report, the applied social engineering practices were designed “to trick users into providing sensitive information and granting extra mobile app permissions.” Remember that malicious apps need you to grant them certain sensitive permissions to function properly. Due to the security systems present in modern Android versions, these apps can’t initiate system-level attacks on their own. Therefore, we advise against granting sensitive permissions to random apps, particularly if they appear suspicious.
Apps were already removed or “fixed”
Currently, some apps on the list are no longer available on the Play Store. Others received updates to remove the “SpyLoan” features so they can still be present in the Google app store. However, if you installed any of the removed apps, you still need to manually uninstall them from your device. Records indicate that malicious apps accumulated around 8 million downloads.
McAfee also warns of “a global threat exploiting social engineering.” So, it is possible that similar apps will emerge in the coming weeks. Such attacks tend to intensify between November and December each year. It is no coincidence that malicious apps disguise themselves as money lending services during the Black Friday and Christmas shopping period.
