Trojan Horses (beyond the definition that you may be more familiar with) is an app that hides its true purpose by pretending to be a regular app. But once the app is installed, it triggers the malware that infects the phone, allowing a bad actor to steal personal data and even take control of the device. According to a new report, researchers at Dr. Web Anti-virus a major malware attack on Huawei’s App Gallery app storefront that caused victims to inadvertently install dangerous malware on their phones.
The 190 infected Android Trojan apps were installed approximately 9.3 million times. Dr. Web says the malware has been identified as’ Android.Cynos.7.origin ‘and is believed to be a modified version of Cynos malware used to collect personal data from victims’ handsets. The researchers ended up sounding the alarm Huawei about Trojan horses and Huawei deleted them from the App Gallery.
Now the case is here. Although Huawei removed the infected apps from the App Gallery if you installed any of them on your phone, making your data vulnerable to theft can still be a major issue. The three infected apps with the largest number of installations include:
- Hurry up and hide – 2,000,000
- Cat Adventure – 427,000
- Driving school simulator – 142,000
If you have any of these apps on your Huawei phone, uninstall them ASAP. You can check the names of all 190 infected apps by pressing this link. The infected apps can spy on text messages, and according to the report from Dr. Web, “Android.Cynos.7.origin is one of the modifications of the Cynos application module. This module can be integrated into Android apps to monetize them. This platform has been known since at least 2014.”
These Trojan apps may collect the user’s personal data and information about their device and send it to a remote server
The report adds that some of the versions of the malware have aggressive functionality. “They send premium SMS, intercept incoming SMS, download and launch additional modules and download and install other apps.” It’s obviously not good to have any of these apps installed on your phone. The version of the Trojan found in Huawei’s App Gallery collects personal information about the user and his device and displays ads.
As the report notes, you can immediately sense that something is not right, as the app asks for permissions that are not normally associated with a gaming app, such as the ability to make and manage phone calls. This allows the Trojan to access certain information.
Once granted, the app sends certain information to a remote server, including the user’s phone number, device location, some of the specifications belonging to the user’s device, and according to the report, “Various mobile network parameters, such as network code and mobile country code; also GSM cell ID and international GSM area code. “
The infected apps have already been removed from Huawei’s App Gallery app store
Dr. Web explains the problem with Trojan malware apps targeting children. “Immediately, a mobile number leak can seem like an insignificant problem. Yet, in reality, it can seriously hurt users, especially given that children are the games’ primary target audience.”
The research site adds that “Even if the mobile number is registered to an adult, downloading a child’s game can most likely indicate that it is the child who is actually using the mobile phone. It is very doubtful whether parents would want the above. Data about the phone should transmitted not only to unknown foreign servers but to all others in general. “