as informed in Check Point told BGR that it informed Google About these new malware apps, which were removed from Google Play.
Moreover, the app can use an Android plugin to upload fraudulent apps on a virtual machine.
The new Google Play apps seem to be camera-related apps uploaded under names of fake Chinese developers.
It can install apps without getting elevated permissions, and it can install an infinite number of fraudulent apps without actually overloading the device.
Check Point also discovered its creators and concluded that the malware was able to generate some $300,000 per month from fraudulent advertising.
“…HummingWhale malware first raised suspicions when Check Point researchers analyzed one of the apps.
Last year, security firm Check Point warned of a new type of Android malware called HummingBad, and now the company has issued yet another warning.
Google has already removed the HummingWhale apps from the Play Store according to the security firm’s update.
These combined to generate around $300,000 per month in ad revenue for Yingmob, making Hummingbad a particularly lucrative malware enterprise.
Check Point says it also identified several new HummingBad samples which promote the new HummingWhale version.
as informed in
Android devices hit by ‘cutting edge’ malware attack
Android devices have been hit by a severe malware attack that may have been downloaded by “several million unsuspected victims”.
Dubbed “HummingWhale”, the new attack used “cutting edge techniques that allow it to perform ad fraud better than ever before”, says the site, adding that contaminated apps used “fraudulent ratings” to raise their reputation on the store.
While last year’s HummingBad malware was not a “catastrophic attack”, it did pose a “higher risk” for devices running older software versions, says The Guardian.
Apps were uploaded under the names of “fake Chinese developers” and contained a “suspiciously large” encrypted file, which was the same as those found in the old HummingBad software.
HummingWhale generated revenue by “displaying fraudulent ads” which, once opened, installed apps without the user’s permission, says ArsTechnica.
about the details read more from here
This content may collect you by Lily Jack