New malware on Google Play: How this app made it through Play Protect

Posted by Roxane Suau on January 22, 2021

We detected yesterday on Google Play a malicious mobile application with 10K+ installs called Daily Food Diary. The cybercriminal who published this app bypassed Play Protect security by deeply obfuscating its malicious code. After being reported, the malware was shortly deleted from the official store this morning. Users are advised to promptly uninstall it from their devices. 

 

Read More

Security alert | 6 new apps with Joker malware on Google Play

Posted by Roxane Suau on August 31, 2020

Update September 2nd: The infected applications have now been deleted from Google Play, but are still installed on the devices of their users.


Joker is a malicious bot (categorized as Fleeceware) which main activity is to simulate clicks and intercept SMS to subscribe to unwanted paid premium services unbeknownst to users. By using as little code as possible and thoroughly hiding it, Joker generates a very discreet footprint that can be tricky to detect.

In the last year, the malware was found hiding in hundreds of apps. Today, Pradeo once again identified infected applications on Google Play (listed below), showing the store's struggle to prevent malicious activities on its platform. Altogether, the 6 apps account for nearly 200.000 installs. Users are advised to immediately delete them from their device to avoid fraudulent activities.

Read More

Pradeo acts against coronavirus by making its mobile security services available for free

Posted by Clément Saad on March 17, 2020

 

In this context of global health crisis, Pradeo supports companies by offering its mobile security services for free. This initiative is part of the mobilization action undertaken by the Hexatrust group of companies in response to the call of Cédric O, French Secretary of State for Digital Affairs. The publisher of mobile security solutions is committed to going beyond borders and opens the use of its solutions to all companies around the world who request them.

Read More

Google Play’s most downloaded shopping apps irresponsibly process users’ data

Posted by The Pradeo Lab on November 14, 2019

The largest online retailers in the world offer their products through mobile applications that are used by billions of customers. As a result, nowadays 82% of internet users shop online through their mobile device, according to a Statista report.

When a mobile application handles personal and financial data, it is required by data privacy laws, such as the General Data Protection Regulation (GDPR) and the Payment Service Directive 2 (PSD2), to embed security capabilities that’ll enforce privacy by design and prevent data breach.

The Pradeo Lab looked into Google Play’s 38 most downloaded shopping apps, shredding them with its app security testing tool. The results show they overly process personal data and handle them in a poorly secure manner.

 

 

Read More

Pradeo streamlines Mobile Threat Intelligence with a brand-new line of services for security professionals

Posted by Roxane Suau on July 10, 2019

Official Press Release here.

Pradeo’s new mobile threat intelligence services provide deep and accurate insights on mobile threats, offering companies visibility on the mobile environment, thus enabling effective counter-threat responses.

Read More