The new trojan malware called SpinOk was detected in 101 apps on Google Play Store. The malware was found disguised as an advertisement SDK in these apps.
Malware attacks are not new. We often come across reports of new malware circulating on the web, as hackers try new ways to target people and steal their data and money. However, what makes these malware attacks more concerning is when they manage to make their way to our devices through reliable sources. For instance, researchers have detected a new malware that has infected more than 100 apps on Google Play Store.
Apps affected by Trojan malware
Dr. Web report has also revealed the name of all the 101 apps infected with the Android.Spy.SpinOk trojan SDK. Here is the list of the top 10 apps which carry this malware and have the highest number of downloads on the app store.
Noizz: video editor with music (at least 100,000,000 installations).
Zapya – File Transfer, Share (at least 100,000,000 installations; the trojan module was present in version 6.3.3 to version 6.4 and is no longer present in current version 6.4.1).
VFly: video editor&video maker (at least 50,000,000 installations).
MVBit – MV video status maker (at least 50,000,000 installations).
Biugo – video maker&video editor (at least 50,000,000 installations).
Crazy Drop (at least 10,000,000 installations).
Cashzine – Earn money reward (at least 10,000,000 installations).
Fizzo Novel – Reading Offline (at least 10,000,000 installations).
CashEM: Get Rewards (at least 5,000,000 installations).
Tick: watch to earn (at least 5,000,000 installations).
Here is the full list of Andorid apps infected by the Android.Spy.SpinOk trojan malware:
Security researchers at Dr. Web, in collaboration with BleepingComputer, have recently identified a new spyware called ‘SpinOK’ which has infected over 100 applications available for download on the Google Play Store. What makes this discovery particularly alarming is that these compromised apps have had a staggering total of over 400 million downloads.
Researchers have discovered that this trojan malware disguises itself as an advertisement SDK and appears to be legitimate by offering minigames with daily rewards to attract users. However, once downloaded, the malware steals private data stored on users’ devices and sends it to a remote server.
“On the surface, the SpinOk module is designed to maintain users’ interest in apps with the help of mini-games, a system of tasks, and alleged prizes and reward drawings,” the report by Doctor Web reveals.
The report further reveals that the infected apps had different levels of malicious content, with some still containing harmful software and others having it in specific versions or being removed entirely from the store. However, these apps have been downloaded 421,290,300 times and this puts a significant number of Android users at risk of cyber threat. While the researchers have alerted Google about it, users are also asked to take precautions and stay away from downloading any such apps.
While the researchers have reported the issue with Google and apps have been removed from Google Play, still, users are asked to delete these apps if they have already downloaded them. Additionally, if they are seeing these apps on the app store, they are advised to update Google Play, including security updates.
Also, it is highly advisable to use antivirus software to protect your device from any such harmful malicious agents. Additionally, keep your device up to date with the latest system and security updates as these updates include bug fixes and improved security while addressing existing issues, such as bugs and crashes.