Researchers at Kaspersky have discovered a malware Trojan, Necro, that has affected over 11 million Android devices. That number is just from the Play Store apps, which means the actual number of victims is likely much higher.

Wuta Camera, Max Browser, WhatsApp Mods, Spotify Mods, and Minecraft Mods were found to be infected with a Necro Sideloader. All the apps are shown to contain CoralSDK. If you downloaded any of this remove the apps and wipe your phone.

      • @atrielienz@lemmy.worldEnglish
        11 day ago

        Yeah, but it doesn’t seem likely they’d be satisfied with these apps either. I mean. It’s not like they’re feature rich. They’re a shell app intended to be malware for the most part. So you’d end up installing it and then going “this isn’t what I wanted” and then uninstalling it, I would think. Photoshop Express is like $4 (might be more now, haven’t checked).

        • @Lun0tic@lemmy.worldEnglish
          414 hours ago

          Photoshop Express requires a monthly subscription which is a practice seen as trash by the general population.

          • @atrielienz@lemmy.worldEnglish
            110 hours ago

            Didn’t know that. I generally do photo editing on a computer so it’s not like I’m downloading a bunch of camera apps.

  • enkersEnglish
    202 days ago

    From the picture, yes, Google Play is indeed malware. F-Droid is the way.

          • KevinEnglish
            182 days ago

            Because they only offer open source apps they build themselves

          • enkersEnglish
            82 days ago

            FOSS apps are generally more secure due to auditability of the source. Many eyes, and all that. Although I’m sure there’s also reduced interest from attackers on smaller platforms.

            Also, malware devs would have the additional constraint of having to either open source their malware, which they probably don’t want to do, or sideload their payload, which is more work for them.