New campaigns spread banking malware through Google Play

As this year is coming to an end, three security vendors, ESET, Avast, and SfyLabs have teamed up together to put an end to malware campaigns through Google Play. Although all apps submitted to be displayed in the Google Play store are all analyzed for any malicious material, hackers have been getting better and better at hiding their malware from Google Plays automated detection solution. According to, all malicious apps are being removed within one to two days of being reported to google, but by then, many users would have been affected.

How to prevent a successful attack?

Lukas Stefanko lists two pieces of advice for all users to avoid when downloading apps:

  1. It is always good only to install applications from the Google Play store, since most malware is still mainly spread through alternative stores
  2. Second, unless you know exactly what you are doing, do not enable ‘unknown sources’. If you are asked to do this by an app or someone you do not trust personally, it is most likely malware-related.

To read more on how to prevent such attacks and how these apps are being downloaded, Click Here!