Dr. Web, a cybersecurity company, has revealed over 100 applications on the Google Play Store for Android devices that utilize spyware called “SpinOk” to steal user data.
According to the malware-fighting company, these applications disguise themselves as small games or task systems that offer rewards and bonuses to users. While appearing as innocent games, these applications establish connections with remote servers and download additional content. In the background, these apps scan the stored data on users’ phones, retrieve files from the device, or copy the contents of the clipboard, where copied texts and information are stored, such as bank information or account passwords.
These applications were downloaded more than 420 million times. Google has removed the apps from the store and urged developers to release new updates that remove the spyware. It is uncertain whether the app developers integrated the malicious software without their knowledge or deliberately included it within their applications.
You can find the names of the applications here.
Users who have installed one or more of these applications are advised to update them to the latest version. If the app does not return to the app store, it is recommended to uninstall it.
