These malicious apps aren’t exclusive to the Google Play Store, as they’re also being distributed on social media, such as YouTube, Twitter, and Telegram.
The two new Android malware families are named CherryBlos and FakeTrade, and were discovered on the Google Play Store by cybersecurity firm Trend Micro.
According to Trend Micro, the CherryBlos malware has been around since April.
The pair have been injected inside tens of apps, masquerading as shopping and money-making apps, as well as ones that are impersonating real-life businesses and ChatGPT.
Luckily, the apps have only been downloaded a few thousand times combined, before they were removed by Google.
However, if you have one of these apps on your phone, you must delete it manually – or your passwords will be at risk, if they haven’t been stolen already.
CherryBlos employs a number of different tactics to steal passwords, according to TrendMicro.
The main technique is to use fake overlays which appear on top of legitimate banking and crypto apps.
So instead of typing in details to access their accounts, victims are unknowingly plugging in their passwords and sending them straight to fraudsters.
Most read in Phones & Gadgets
Hackers are also using optical character recognition (OCR) – the technology used in PDF editors – to steal passwords from screenshots in victims’ photo albums.
Here’s the list of all of the 28 scam apps distributing the Faketrade malware:
- Ama
- BBShop
- Canyon
- Compass
- Domo
- Envoy
- Fiar
- FIRETOSS
- Gobuy
- Godo
- Goshop
- Huge
- Koofire
- Leefire
- Moshop
- NTBuy
- OneFire
- Papaya
- Pudding
- Saya
- Sengre
- Smartz
- Tango
- Timeshop
- Tinuiti
- Upwork
- WebFX
- Youtech
Here are the apps carrying the CherryBlos malware:
- GPTalk
- Happy Miner
- Robot 999
- SynthNet
Best Phone and Gadget tips and hacks
Looking for tips and hacks for your phone? Want to find those secret features within social media apps? We have you covered…
We pay for your stories! Do you have a story for The Sun Online Tech & Science team? Email us at [email protected]