Alert! Trojans Attack Millions Of Android Users Through Popular Apps

Illustration of the Spotify application (photo: Unsplash)

JAKARTA - At the end of August 2024, Kaspersky experts identified a new version of the robot Trojan that has infiltrated several popular apps and modified the app on unofficial platforms, including Spotify, WhatsApp, and Minecraft.

Kaspersky's solution notes that these attacks target users in Russia, Brazil, Vietnam, Ecuador, and Mexico.

They are Android downloaders who download and run other harmful components on infected devices based on orders issued by Trojan makers.

Based on its technical characteristics, the Trojan is likely also able to make users subscribe to paid services. In addition, the downloaded module allows attackers to divert internet traffic through victims' devices.

The first finding is in the modified version of Spotify Plus. The app maker claims that their app is secure for devices and offers additional features that are not found in official music streaming apps.

Furthermore, experts also found a modified version of WhatsApp that contained downloaders, followed by an infected version of popular games, including Minecraft, Stumble Guys, and Car Parking Multiplayer.

Your campaign extends outside third-party platforms and is also found on Google Play. The malicious download was found on the Wuta Camera and Max Browser apps.

According to Google Play statistics, the combined download of this application exceeds 11 million. On this platform,iri is also distributed through unverified ad modules.

After Kaspersky's report to Google, the malicious code was removed from Wuta Camera, and Max Browser removed from the store. However, users are still at risk of findingmins on unofficial platforms.