- Study: Netflix released more originals than licensed titles last year Today 2:26 PM
- Laura Ingraham, Dinesh D’Souza slam journalist for having a job Today 1:40 PM
- Netflix is testing a cheap-as-hell mobile-only plan Today 1:08 PM
- Astrology app Co-Star’s bizarre push notifications are now a meme Today 12:18 PM
- ‘The Dirt’ offers a sanitized history of Mötley Crüe—but why? Today 11:42 AM
- ‘The Dirt’ director Jeff Tremaine on Mötley Crüe’s long, difficult road to Netflix Today 11:30 AM
- Here’s video of yet another alleged gunman looking for YouTuber Adam22 Today 11:09 AM
- 12 mugs that are absolutely purr-fect for cat enthusiasts Today 10:58 AM
- Jared Kushner used WhatsApp for official White House business Today 10:50 AM
- Unsettled Tom memes are on the rise Today 10:36 AM
- Trans student nominated for prom king told by administration to run for queen Today 10:07 AM
- Trump turns on his favorite cable news network Today 8:56 AM
- Skillshare is offering new users one month of premium for less than $1 Today 8:34 AM
- How to stream Bellator 218 for free Today 8:00 AM
- Jordan Peele’s ‘Us’ is already a meme gold mine Today 7:18 AM
Hidden code may be draining your battery and data.
Security researchers are warning users about nearly two dozen Android apps found to contain “sophisticated” malware.
The apps, which are disguised as everything from flashlight tools to mobile games, work by forcing an individual’s phone to unknowingly click on ads, thus gathering revenue for the app developers.
Although Google removed the offending apps from its store at the end of November, the click-fraud operations continue as the code remains active on countless phones.
“Instructions sent by the command-and-control server direct the malware to send ad requests pretending to originate from a variety of apps (that are otherwise unrelated to these apps) running on a wide range of mobile phone models,” Sophos notes.
The malware is designed to click on ads in a hidden window, making it nearly impossible for the average user to detect its presence.
“The ad calls do not result in the expected, disruptive, full-screen ads that would otherwise annoy the user of the device and draw attention to the app,” Sophos reports. “Instead, malicious ad calls are made in a hidden browser window, inside of which the app simulates a user interaction with the advertisement.”
Sophos also found that the malware was able to spoof phone models in order to deceive ad networks. Ads clicked on by iPhones, for example, can generate more revenue than their Android counterparts.
“Advertisers will pay a premium to reach the supposedly deep-pocket owners of Apple phones and tablets,” Sophos writes. “As click-fraud grows as a revenue stream for unscrupulous mobile app developers, it turns out that it pays well to lie about what kind of mobile device is fraudulently clicking those ads.”
Among the malicious apps, one known as Sparkle Flashlight was downloaded over 1 million times. The apps received high ratings on the Google Play store as users were unaware of their nefarious nature.
Although the apps were known to heavily drain both one’s data and battery, users would almost certainly be unable to locate the source of the issue due to the malware’s design.
“The only effects a user might notice is that the apps would use a significantly greater amount of data, at all times, and consume the phone’s battery power at a more rapid rate that the phone would otherwise require,” Sophos adds. “Because consumers would not be able to correlate these effects to the apps themselves, their Play Market reviews for these apps showed few negative comments.”
And while the developers were found to have active apps available for iPhone, none were found to contain the malicious click-fraud code.
Sophos has published a full list of the fraudulent apps on its website, offering users a chance to locate and remove them if necessary.
Mikael Thalen is a freelance journalist based in Seattle, covering all things technology, including social media, data breaches, hackers, and more.