A brand new harmful malware assault referred to as “NoVoice” has been found and was talked about in a brand new report in “Bleeping Pc.” The malware was discovered as payload in additional than 50 apps listed within the Google Play Retailer. The report says that these apps had been put in a complete of two.3 million occasions from Google’s Android app storefront. Workers at cybersecurity researcher McAfee found “NoVoice” and located it inside varied apps resembling system cleaners, video games, and picture galleries.
Probably the most harmless apps comprise probably the most harmful payloads
That is how attackers get you. Hiding malware inside what seems to be an harmless and helpful app leads Android customers to put in the app. As soon as put in, the malware delivered because the payload exploits any Android vulnerabilities in an try and get root entry. Not solely will this lead the attackers to choose up data together with usernames and passwords on your monetary providers apps, the malware may help set up and delete apps onto your cellphone with out your data.
How one can inform which nation the attackers are from
McAfee discovered that in sure areas, resembling Beijing and Shenzhen in China, the malware didn’t infect gadgets. This actually offers you an thought about which nation the assault was developed in. It permits the perpetrators to remain away from home legislation enforcement.
Google Play Retailer itemizing of an app contaminated with NoVoice. | Picture by Bleeping Pc
In a press release, Google mentioned that Google Play Shield mechanically eliminated the malicious apps and blocked new installations. Google additionally mentioned that Android customers ought to at all times obtain the most recent safety replace launched for his or her gadgets.
As an added layer of protection, Google Play Shield mechanically removes these apps and blocks new iinstallations. Customers ought to at all times set up the most recent safety updates obtainable for his or her gadget.
Â
Sadly, Bleeping Pc did not title the greater than 50 apps concerned. It did embrace a picture of the Play Retailer itemizing of an app referred to as SwiftClean, which it says carried the NoVoice payload. The developer was Biodun Popoola. The malware will get its title from a silent audio file discovered within the code that performs at no quantity in an effort to have the malicious code run within the background with out getting detected by the consumer. To keep away from malware like this, solely set up Android apps from the Google Play Retailer and in addition be sure that to at all times replace your cellphone.
