The irony here is that these apps are anti-virus programs.
According to the reports, these six apps masquerading as anti-virus programs used the SharkbotAndroidstealer program.
As the user is unknowingly filling the credentials on a pseudo form, Sharkbot gains all the relevant details.
Here, the credential details are sent to the malicious server.
The program can record credentials for email, social media, and banking apps among others.
For now, the victims of these apps are primarily from Italy and the UK.
It is alarming how these apps were able to pass through Googles SafetyNet.
The report mentions that the malicious characteristics of these apps werent activated until someone downloaded and used them.
This is likely the reason these apps were able to go under the radar.
For now, Google has removed these six apps from thePlay Store.
These apps will still be available on other marketplaces including as APKs.
source: www.techworm.net
