Another week, another batch of sketchy Android apps purged from the Google Play store.
This time, it's a group of nearly 60 apps that promised you free footwear, coupons or concert tickets if you left the apps installed. But the apps actually downloaded a secret web browser and used it to perform ad fraud — displaying hidden ads you'd never see but for which the app makers got paid. (The app users never got the free stuff.)
- More than 1,200 iPhone apps infected with malware — what to know
- The best Android antivirus apps to keep your phone clean
- New: Forget Apple Watch 6 — OnePlus Watch could be on way
The apps had simple names like "Get Free Sneakers," "Free Teeth Whitening", "Best Game Hints" or "Coupons for Stores." A full list of the apps, identified by their Android package IDs, is here (opens in new tab).
White Ops (opens in new tab), the security firm that uncovered this scam, said that in just one week in June, these apps displayed more 2 billion bogus ads on 65,000 infected Android phones.
Since late 2019, the fake-ad campaign has enlisted infected phones into a botnet that White Ops is calling "Terracotta," as reported by ZDNet (opens in new tab).
So far, there's been no real harm to phones or phone owners, other than excessive battery drain and bandwidth consumption. But the fact that the apps could install other apps without the users' knowledge means that the Terracotta botnet could become malicious on the turn of a dime.
Using White Ops' discoveries, Google has removed these apps from Google Play and disabled them on users' phones.
To make sure your Android phone isn't infected by such scams, harmless or not, download and install one of the best Android antivirus apps.