contador Saltar al contenido

Tekya is the new Android malware discovered on the Google Play Store

Check Point Research researchers report that they have identified another family of auto-clicker malware that operates within the Google Play Store: disguised in over 56 Android applications and downloaded over 1,000,000 times globally, the malware – dubbed Tekya – performs advertising fraud by imitating a user in all respects: by clicking on ads and banners from advertising agencies such as AdMob, AppLovin ', Facebook and Google's Unity.

Twenty-four of the infected apps, such as jigsaw puzzles and racing games, were primarily intended for children. The rest of the apps instead targeted users of recommended utility apps for cooking, counting, downloading and translating. Tekya's ultimate goal is to generate fraudulent financial gain. To achieve this, Tekya deceives users, mostly children, to click on the ads procured by online advertising agencies.

Tekya infiltrated the Google Play Store by hiding in the native code, configured to work only with Android systems; the developers have somehow circumvented the detection by Google Play Protect, the system designed by Google that should keep Android safe.

Tekya a new malware detected in some apps on the Google Play StoreExample of app targeted by Tekya

Check Point Research responsibly communicated what was discovered to Google, which removed the threat from the Play Store in early March 2020. The researchers explain how to manage auto-clicker malware:

  • Uninstall the infected app from the device
  • Keep your device updated with the latest security patches
  • Install a security solution to prevent future infections

The amount of targeted apps and the number of downloads that the actor managed to successfully complete in the impressive Google Play Store. The combination of all this with a relatively simple infection methodology proves that the Google Play Store can still host malicious applications, researchers report. It's difficult to check if every single app is safe in the store, so users can't just rely on Google Play Store security measures to ensure the protection of their devices, says Aviran Hazum, head of Check Point Software Technologies' Mobile Research.

For all information on cyber security, please refer to this section of macitynet. Instead for all the articles of maitynet that speak of Android it is possible to start from this page.