A new form of Android malware, known as “Goldoson,” has managed to infiltrate Google Play Store. This malicious software has been detected in 60 legitimate apps, which collectively have been downloaded more than 100 million times. According to BleepingComputer, the developers unknowingly integrated a third-party library that contained the malware component, making it easier for the malware to spread undetected.
A research team at McAfee has uncovered a new Android malware that can gather a plethora of sensitive data from unsuspecting users. The malware is capable of accessing and extracting information on the user’s installed apps, as well as details regarding any WiFi or Bluetooth-connected devices. In addition, it can obtain GPS location data, which could potentially compromise the user’s privacy and security.
What This Malware Is Capable Of?
According to reports, when a user runs an app that contains the ‘Goldoson’ malware, the device is registered by a library component that is integrated within the app. This library then proceeds to obtain the device’s configuration information from a remote server that is purposely obscured in order to evade detection.
The latest report on the Goldoson malware reveals that the data collection feature is set to activate every 48 hours. This function allows the malware to gather sensitive information, such as the list of installed apps on the device, the geographical position history, and the MAC addresses of any devices that are connected via Bluetooth or WiFi. This data is then transmitted to a remote C2 server, which is concealed to avoid detection.
“The extent of data collection carried out by Goldoson malware depends on the permissions that the user granted the infected app at the time of installation, along with the version of Android installed on the device.”
How Can You Protect Yourself From These Malware Attacks?
As the threat of malware continues to grow, experts are reminding users of the importance of downloading apps from trusted sources. While app stores such as Google Play and the Apple App Store are generally considered to be safe, it is still crucial for users to exercise caution when downloading any app. By reading reviews and ratings from other users, individuals can gain valuable insights into the quality and safety of an app.
To combat the threat of malware, it is recommended that users install and regularly update reputable anti-malware programs on their devices. By doing so, users can significantly reduce the risk of malware infections and protect their sensitive data from being compromised. Anti-malware programs are designed to detect and eliminate malware before it can cause any harm to the device or data. This is particularly important given the increasingly sophisticated and prevalent nature of modern malware attacks.
And for this exact purpose, we suggest you Systweak Anti-Malware to protect your Android smartphone from these kinds of malware attacks.
As the threat of cyber-attacks continues to grow, it is advised to keep your devices and apps up to date with the latest security patches and updates. These updates often include crucial security fixes that can safeguard your device from known vulnerabilities and exploits. By ensuring that your devices and apps are updated regularly, you can reduce the risk of malware infections and keep your sensitive data safe.
Up Your Android Smartphone Security Game
As the mobile device landscape continues to evolve, so do the risks posed by malware like Goldoson. Despite the stronger protections provided in Android 11 and newer releases, researchers have found that the malware can still access sensitive user data in around 10% of the affected apps. Moving forward, continued efforts will be needed to enhance mobile security measures and mitigate the risks of data breaches.