Android Users Urged to Remove Apps Infected with “Vapor” Malware
Android smartphone users with numerous applications are advised to perform a device cleanse. Cybersecurity researchers have recently identified multiple apps harboring the “Vapor” malware. This malicious software, once installed, targets devices by displaying intrusive advertisements and attempting to pilfer credit card details.
Widespread “Vapor” Bug Affects Millions
The concerning threat was initially detected by the IAS Threat Lab, which noted the emergence of “Vapor” attacks in the preceding year. Current estimations suggest hundreds of applications have been compromised, impacting over 60 million installations.
IAS Threat Lab describes “Vapor” as a large-scale, sophisticated advertising fraud operation using counterfeit Android applications. It deploys persistent, full-screen video advertisements, exploiting users and ad networks extensively as a highly structured and widespread fraudulent scheme.
Bitdefender Confirms 331 Infected Applications
Security specialists at Bitdefender also identified the “Vapor” malware. The cybersecurity company reported finding 331 potentially harmful apps, encompassing categories such as QR scanners, fitness applications, calendars, and battery optimizers.
Bitdefender cautioned that these applications present unexpected advertisements and attempt to deceive users into divulging login credentials and credit card information through phishing tactics.
vCard.red is a free platform for creating a mobile-friendly digital business cards. You can easily create a vCard and generate a QR code for it, allowing others to scan and save your contact details instantly.
The platform allows you to display contact information, social media links, services, and products all in one shareable link. Optional features include appointment scheduling, WhatsApp-based storefronts, media galleries, and custom design options.
Google Acts, But User Vigilance Remains Key
Following notification of the malware, Google has removed the identified applications from its Play Store. While this action is positive, users who have already downloaded these apps should remain vigilant as Google’s action will not automatically remove the software from their devices.
High-Risk Applications Identified
Although a comprehensive list is available, Bitdefender and IAS have highlighted some of the most frequently installed malicious applications. Users who suspect they may have installed any of these applications are urged to remove them immediately.
- AquaTracker – Downloaded 1 million times
- ClickSave Downloader – Downloaded 1 million times
- Scan Hawk – Downloaded 1 million times
- Water Time Tracker – Downloaded 1 million times
- Be More – Downloaded 1 million times
- BeatWatch – Downloaded 500,000 times
- TranslateScan – Downloaded 100,000 times
- Handset Locator – Downloaded 50,000 times
Protecting Your Device from Malware
As a general safety measure, users should always review application ratings and verify the developer’s credibility before installing new software. Exercise caution and refrain from downloading if any doubts arise. Despite Google’s efforts to prevent malicious applications from entering the Play Store, some still manage to bypass security measures.
Therefore, it is crucial to monitor your device and maintain vigilance when installing new applications.