Android devices have been hit by a severe malware attack that may have been downloaded by "several million unsuspected victims".
According to Check Point Software Technologies, more than 20 apps on the Google Play store were found to contain the malicious software, believed to a be a variant of the "HummingBad" malware that affected around ten million Android users in 2016.
Dubbed "HummingWhale", the new attack used "cutting edge techniques that allow it to perform ad fraud better than ever before", says the site, adding that contaminated apps used "fraudulent ratings" to raise their reputation on the store.
The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
Apps were uploaded under the names of "fake Chinese developers" and contained a "suspiciously large" encrypted file, which was the same as those found in the old HummingBad software. Google has since removed the contaminated apps, Check Points adds.
HummingWhale generated revenue by "displaying fraudulent ads" which, once opened, installed apps without the user's permission, says ArsTechnica. These apps would then "run in a virtual machine" to "generate referral revenues".
While last year's HummingBad malware was not a "catastrophic attack", it did pose a "higher risk" for devices running older software versions, says The Guardian. It could open an access passage into the device that allowed user data to be sold on the "black market".
-
October 13 editorial cartoonsCartoons Monday's political cartoons include Donald Trump's consolation prize, government workers during shutdown, and more
-
Can Gaza momentum help end the war in Ukraine?Today's Big Question Zelenskyy’s request for long-range Tomahawk missiles hints at ‘warming relations’ between Ukraine and US
-
The Israeli hostages and Palestinian prisoners being releasedThe Explainer Triumphant Donald Trump addresses the Israeli parliament as families on both sides of the Gaza war reunite with their loved ones
-
Is the UK government getting too close to Big Tech?Today’s Big Question US-UK tech pact, supported by Nvidia and OpenAI, is part of Silicon Valley drive to ‘lock in’ American AI with US allies
-
Google: A monopoly past its prime?Feature Google’s antitrust case ends with a slap on the wrist as courts struggle to keep up with the tech industry’s rapid changes
-
South Korea's divide over allowing Google MapsTalking Points The country is one of few modern democracies where the app doesn't work
-
Google avoids the worst in antitrust rulingSpeed Read A federal judge rejected the government's request to break up Google
-
Is AI killing the internet?Talking Point AI-powered browsers and search engines are threatening the death of the open web
-
Unreal: A quantum leap in AI videoFeature Google's new Veo 3 is making it harder to distinguish between real videos and AI-generated ones
-
Google's new AI Mode feature hints at the next era of searchIn the Spotlight The search giant is going all in on AI, much to the chagrin of the rest of the web
-
Is Apple breaking up with Google?Today's Big Question Google is the default search engine in the Safari browser. The emergence of artificial intelligence could change that.
