In the ever-evolving world of technology, the threat of cybercrime is a constant concern.

Cybersecurity firm McAfee has uncovered a new malicious Android program, dubbed Xamalicious, that has infected over 340,000 devices worldwide, including a significant number in Australia.

This malicious software has infiltrated Android devices through apps available on Google Play, Android’s official mobile app store, and even some unofficial third-party app stores.

McAfee's investigation identified 14 infected apps on Google Play, three of which had at least 100,000 installs each.

McAfee identified 14 apps affected by the malware on Google Play. Image source: McAfee / Google Play.

Despite Google's swift action in removing these apps, users who installed them from mid-2020 until early-2023 are still at risk of active Xamalicious infections.

This necessitates manual scans and cleanup efforts to ensure the safety of their devices.

The most popular among the infected apps include Essential Horoscope for Android, 3D Skin Editor for PE Minecraft, and Logo Maker Pro.

Other affected apps include Auto Click Repeater, Count Easy Calorie Calculator, Dots: One Line Connector and Sound Volume Extender.

In addition to the apps found on Google Play, a separate set of 12 malicious apps that carried the Xamalicious threat has been identified on unofficial third-party app stores.

These apps infect users via downloadable APK (Android package) files, which anyone can directly download onto their phone and install programs from.

Unfortunately, specific download statistics for these apps are not available, making it difficult to gauge the full extent of the threat.

Furthermore, according to McAfee’s data, most infections have been reported in the United States, Germany, Australia, Spain, Brazil, Mexico, Argentina and the United Kingdom.

Xamalicious is an Android backdoor embedded within apps developed using the open-source Xamarin framework.

This makes code analysis more challenging, allowing it to slip past security measures undetected.

Once installed, Xamalicious requests access to the Accessibility Service of your phone, granting it the ability to perform privileged actions such as navigation gestures, hiding on-screen elements, and self-permission grants.

Xamalicious is capable of executing various commands, gathering device and hardware information, determining the device’s geographic location, identifying emulators, checking root status, listing installed apps, reporting accessibility service permissions and connecting to a remote server to download additional files.

McAfee has also uncovered links between Xamalicious and an ad-fraud app called Cash Magnet, which suggests that the backdoor may engage in ad fraud activities.

This also impacts your phone’s performance and network bandwidth.

Protecting Your Android Device

While Google Play implements measures to combat malware—including initiatives such as the App Defense Alliance—unfortunately, unofficial platforms lack such stringent controls.

This makes them a hotbed for malicious software.

Android users are strongly encouraged to refrain from downloading apps from third-party sources, to stick to essential apps, to read user reviews before installation and to thoroughly vet app developers and publishers.

Full package names for the infected apps can be found below:

If you have any of these apps installed on your device, it is recommended to uninstall them immediately and run a full system scan.

Key Takeaways

• McAfee has identified an Android backdoor called Xamalicious, affecting over 340,000 devices through apps on Google Play.
  
• Fourteen infected apps were found, with the three most popular apps each reaching 100,000 installations.
  
• Users who installed these apps between mid-2020 and early-2023 in Australia and other countries may still have active infections that require manual cleanup.
  
• Android users are advised to be cautious, particularly when downloading apps from third-party sources, and to regularly review and scrutinise app developers and publishers.

Have you experienced any issues with your Android device recently? Share your experiences and tips for staying safe online in the comments below.

 

[Shane/#]

In the ever-evolving world of technology, the threat of cybercrime is a constant concern.

Cybersecurity firm McAfee has uncovered a new malicious Android program, dubbed Xamalicious, that has infected over 340,000 devices worldwide, including a significant number in Australia.

This malicious software has infiltrated Android devices through apps available on Google Play, Android’s official mobile app store, and even some unofficial third-party app stores.

McAfee's investigation identified 14 infected apps on Google Play, three of which had at least 100,000 installs each.

View attachment 38479

McAfee identified 14 apps affected by the malware on Google Play. Image source: McAfee / Google Play.

Despite Google's swift action in removing these apps, users who installed them from mid-2020 until early-2023 are still at risk of active Xamalicious infections.

This necessitates manual scans and cleanup efforts to ensure the safety of their devices.

The most popular among the infected apps include Essential Horoscope for Android, 3D Skin Editor for PE Minecraft, and Logo Maker Pro.

Other affected apps include Auto Click Repeater, Count Easy Calorie Calculator, Dots: One Line Connector and Sound Volume Extender.

In addition to the apps found on Google Play, a separate set of 12 malicious apps that carried the Xamalicious threat has been identified on unofficial third-party app stores.

These apps infect users via downloadable APK (Android package) files, which anyone can directly download onto their phone and install programs from.

Unfortunately, specific download statistics for these apps are not available, making it difficult to gauge the full extent of the threat.

Furthermore, according to McAfee’s data, most infections have been reported in the United States, Germany, Australia, Spain, Brazil, Mexico, Argentina and the United Kingdom.

Xamalicious is an Android backdoor embedded within apps developed using the open-source Xamarin framework.

This makes code analysis more challenging, allowing it to slip past security measures undetected.

Once installed, Xamalicious requests access to the Accessibility Service of your phone, granting it the ability to perform privileged actions such as navigation gestures, hiding on-screen elements, and self-permission grants.

Xamalicious is capable of executing various commands, gathering device and hardware information, determining the device’s geographic location, identifying emulators, checking root status, listing installed apps, reporting accessibility service permissions and connecting to a remote server to download additional files.

McAfee has also uncovered links between Xamalicious and an ad-fraud app called Cash Magnet, which suggests that the backdoor may engage in ad fraud activities.

This also impacts your phone’s performance and network bandwidth.

Protecting Your Android Device

While Google Play implements measures to combat malware—including initiatives such as the App Defense Alliance—unfortunately, unofficial platforms lack such stringent controls.

This makes them a hotbed for malicious software.

Android users are strongly encouraged to refrain from downloading apps from third-party sources, to stick to essential apps, to read user reviews before installation and to thoroughly vet app developers and publishers.

Full package names for the infected apps can be found below:

If you have any of these apps installed on your device, it is recommended to uninstall them immediately and run a full system scan.

Key Takeaways

• McAfee has identified an Android backdoor called Xamalicious, affecting over 340,000 devices through apps on Google Play.
• Fourteen infected apps were found, with the three most popular apps each reaching 100,000 installations.
• Users who installed these apps between mid-2020 and early-2023 in Australia and other countries may still have active infections that require manual cleanup.
• Android users are advised to be cautious, particularly when downloading apps from third-party sources, and to regularly review and scrutinise app developers and publishers.

Have you experienced any issues with your Android device recently? Share your experiences and tips for staying safe online in the comments below.

Digital age bloody parasites get into everything like ant's Google this is not good enough fortunately I haven't downloaded any of these apps get your together Google

 

[Liz]

Nothing is safe anymore, fortunately I haven't got any of these apps.

 

[gamiry]

Digital age bloody parasites get into everything like ant's Google this is not good enough fortunately I haven't downloaded any of these apps get your together Google

I refuse to even own a mobile phone. Being so deaf I can only use landline on it's highest level. I often wonder why they are called SMART PHONES Haven't even figured out where these emojies (?) are so I can use them.

 

[Col@45]

In the ever-evolving world of technology, the threat of cybercrime is a constant concern.

Cybersecurity firm McAfee has uncovered a new malicious Android program, dubbed Xamalicious, that has infected over 340,000 devices worldwide, including a significant number in Australia.

This malicious software has infiltrated Android devices through apps available on Google Play, Android’s official mobile app store, and even some unofficial third-party app stores.

McAfee's investigation identified 14 infected apps on Google Play, three of which had at least 100,000 installs each.

View attachment 38479

McAfee identified 14 apps affected by the malware on Google Play. Image source: McAfee / Google Play.

Despite Google's swift action in removing these apps, users who installed them from mid-2020 until early-2023 are still at risk of active Xamalicious infections.

This necessitates manual scans and cleanup efforts to ensure the safety of their devices.

The most popular among the infected apps include Essential Horoscope for Android, 3D Skin Editor for PE Minecraft, and Logo Maker Pro.

Other affected apps include Auto Click Repeater, Count Easy Calorie Calculator, Dots: One Line Connector and Sound Volume Extender.

In addition to the apps found on Google Play, a separate set of 12 malicious apps that carried the Xamalicious threat has been identified on unofficial third-party app stores.

These apps infect users via downloadable APK (Android package) files, which anyone can directly download onto their phone and install programs from.

Unfortunately, specific download statistics for these apps are not available, making it difficult to gauge the full extent of the threat.

Furthermore, according to McAfee’s data, most infections have been reported in the United States, Germany, Australia, Spain, Brazil, Mexico, Argentina and the United Kingdom.

Xamalicious is an Android backdoor embedded within apps developed using the open-source Xamarin framework.

This makes code analysis more challenging, allowing it to slip past security measures undetected.

Once installed, Xamalicious requests access to the Accessibility Service of your phone, granting it the ability to perform privileged actions such as navigation gestures, hiding on-screen elements, and self-permission grants.

Xamalicious is capable of executing various commands, gathering device and hardware information, determining the device’s geographic location, identifying emulators, checking root status, listing installed apps, reporting accessibility service permissions and connecting to a remote server to download additional files.

McAfee has also uncovered links between Xamalicious and an ad-fraud app called Cash Magnet, which suggests that the backdoor may engage in ad fraud activities.

This also impacts your phone’s performance and network bandwidth.

Protecting Your Android Device

While Google Play implements measures to combat malware—including initiatives such as the App Defense Alliance—unfortunately, unofficial platforms lack such stringent controls.

This makes them a hotbed for malicious software.

Android users are strongly encouraged to refrain from downloading apps from third-party sources, to stick to essential apps, to read user reviews before installation and to thoroughly vet app developers and publishers.

Full package names for the infected apps can be found below:

If you have any of these apps installed on your device, it is recommended to uninstall them immediately and run a full system scan.

Key Takeaways

• McAfee has identified an Android backdoor called Xamalicious, affecting over 340,000 devices through apps on Google Play.
• Fourteen infected apps were found, with the three most popular apps each reaching 100,000 installations.
• Users who installed these apps between mid-2020 and early-2023 in Australia and other countries may still have active infections that require manual cleanup.
• Android users are advised to be cautious, particularly when downloading apps from third-party sources, and to regularly review and scrutinise app developers and publishers.

Have you experienced any issues with your Android device recently? Share your experiences and tips for staying safe online in the comments below.

Depends on how smart the user is !!

 

[gamiry]

Depends on how smart the user is !!

I'm not when it comes to these things. I've even asked what and "ap" was. I prefer speaking face to face or landline.

 

[PattiB]

Good reason to have an iPhone. We are vigilant about software updates & so far have not experienced any problems & hopefully it continues.

 

[gamiry]

Good reason to have an iPhone. We are vigilant about software updates & so far have not experienced any problems & hopefully it continues.

they are useless to me Patti.......I bought an iphone 2 years ago and finally gave it away as I couldn't even hear it ring which I had to prove to friends was true.

 

[PattiB]

they are useless to me Patti.......I bought an iphone 2 years ago and finally gave it away as I couldn't even hear it ring which I had to prove to friends was true.

That’s a shame gamiry iPhones are generally really easy to use though I dislike the way the ringtone is a chime so my son somehow makes mine have a ring like a normal phone. I hear strange music & think it’s someone walking in the street with music going. Hearing loss is a problem for a lot of us more mature people, including my husband. I’m not sure about android computers but my iPad has a key with a smiley face on the keyboard & when you press that up pops all the emojis. Had to explain to Ted about emojis & how to find them.