New Delhi: Amid the recent surge in demand for oximeters during the second coronavirus wave in India, cyber security researchers have detected several fake oximeter apps on Play Store. The team from Quick Heal Security Labs found that malware authors were misusing the official apps with trojan to steal users’ banking credentials. “Threat actors use reliable tools to deploy payload and third-party app stores for distribution of these fake apps,” the researchers said in a statement.Also Read - Millions of Phone Numbers of Clubhouse Users 'Up For Sale' on Dark Web
Attackers primarily target the app stores, where both free and paid apps are available. They use different tools like firebase or GitHub to deploy these fake apps and different app markets like QooApp, Huawei, etc for effective publishing and distribution among a large base of users. “While threat actors are always seeking opportunities to compromise users, it is extremely critical to stay alert at every point possible,” the team said. They advised not to open links shared through messages or on social media platforms. Also Read - YouTube Hits an Amazing 10 Billion Download Milestone on Google Play Store
Here’s how to check the authenticity of your app:
- “Check for grammar errors in the app descriptions as attackers generally use the wrong English,” experts noted.
- Since reviews and ratings can also be fake, focus more on reviews with low ratings.
- “Avoid approaching to third-party app stores for downloading apps or through links shared via SMS, emails and WhatsApp. These avenues don’t invest in security and hence make space for all types of apps, including the infected ones,” the researchers said.
(With inputs from IANS) Also Read - THIS Company Has Shut Offices Worldwide to Give Its 700 'Burnt-Out' Staff One Week's Paid Break