TheRainbowegoSweet007
1314
58
3
Malware Bytes:
A malicious app claiming to be a financial management tool has been downloaded 100,000 times from the Google Play Store. The app— known as “Finance Simplified”—belongs to the SpyLoan family which specializes in predatory lending.
Sometimes malware creators manage to get their apps listed in the official app store. This is a great benefit for them since it lends a sense of legitimacy to the app, and they don’t have to convince users to sideload the app from an unofficial site.
So, it gives them a much larger audience, they can lean on the trust we invest in the official app stores and users don’t have to do anything they might perceive as suspicious.
While Google has enhanced security measures in place—including AI-powered threat detection and real-time scanning— that are designed to detect and block malicious apps more effectively, the cat-and-mouse game between cybercriminals and security measures continues, with each side trying to outsmart the other.
In this case, the loan app evaded detection on Google Play, by loading a WebView to redirect users to an external website from where they could download the app hosted on an Amazon EC2 server.
https://www.malwarebytes.com/blog/news/2025/02/predatory-app-downloaded-100000-times-from-google-play-store-steals-data-uses-it-for-blackmail
MyBigMouth
Reads title and thinks, surely TikTok has been downloaded more than that.
ME2BNS12
Fucking called it. On this very site.
trhopkins
LOLOL
[deleted]
[deleted]
Ikwilstroopwaffels
I hope whatever is broken deep inside of you gets fixed one day.
Targe0
Spreading awareness of a big security issue like this isn't predatory, you idiot. It's warning people and boosting the message about the problem.
iamgnat
They posted a screenshot of the actual article, included the text (which is nice to do for users needing assistive technology), and (most importantly) included the sauce. This is the opposite of what you are accusing them of.