More than 10 million Android users have been infected with GriftHorse malware, which is trojanizing multiple apps and secretly registering victims to premium mobile services – a sort of billing fraud known as “fleeceware” according to researchers.
The GriftHorse malware was spread via Google Play and third-party application stores, according to the research group, and it took “hundreds of millions of Euros.” Users who have been impacted. The malware disguised itself within app codes and deceived user to click on suspicious links in order to transfer money into their accounts.
According to the Zimperium research, these malicious Android apps appear to be “harmless.” “initially in terms of app description and requested permissions, but they essentially deceive users into subscribing to premium services without their knowledge and agreement in order to extract money.
Researchers discovered over 130 GriftHorse apps in all categories being released on Google Play and third-party app stores. According to the researchers, some of them have minimal functionality, while others do nothing.
GriftHorse reportedly made its debut in November of last year, and by now, the total sum stolen might be well into the hundreds of millions of Euros, according to researchers, with each victim paying upwards of $40 per month.
The malware basically sends out witty popups and notifications that promise a variety of rewards and exclusive offers. Users who click on these messages are taken to an internet website where they must confirm their phone number in order to take advantage of the deal.
Victims are scattered over 70 countries, each with hidden extra expenses they may not be aware of. Google removed the blacklisted apps, however GriftHorse is far from dead: there could be further Play apps, installations could still be active on people’s phones, and the apps are still available in many unofficial marketplaces.
Apps infected with GriftHorse malware
- 100% Projector for Mobile Phone
- 3D Camera To Plan
- Amazing Sticky Slime Simulator ASMR\u200f
- Amazing Video Editor
- AR Phone Booster – Battery Saver
- Bag X-Ray 100% Scanner
- Battery Live Wallpaper 4K
- Bus – Metrolis 2021
- Bus Driving Simulator
- Call Blocker-Spam Call Blocker
- Call Blocker-Spam Call Blocker
- Call Recoder Pro
- Call Record Pro
- Call Recorder iCall
- Caller ID & Spam Blocker
- CallerID
- Caller-x
- CallHelp: Second Phone Number
- Chat Translator All Messengers
- CIAO – Live Video Chat
- Cinema Hall: Free HD Movies
- Clap
- Clap To Find My Phone
- ClipBuddy
- Color Call Changer
- Coupons & Gifts: InstaShop
- CutCut Pro
- Daily Horoscope & Life Palmestry
- Dating App – Sweet Meet
- Easy Bass Booster
- Easy TV Show
- Ela-Salaty: Muslim Prayer Times & Qibla Direction
- English Arabic Translator direct
- Face Analyzer
- FastPulse – Heart Rate Monitor
- FindContact
- Fingerprint Changer
- Fingerprint Defender
- Fitness Point
- Fitness Trainer
- Forza H Mobile 4 Ultimate Edition
- Free Calls WorldWide
- Free Coupons 2021
- Free Islamic Stickers 2021
- Free Translator Photo
- FX Keyboard
- Geospot: GPS Location Tracker
- GetContacter
- GPS Phone Tracker – Family Locator
- Handy Translator Pro
- Heart Rate and Meal Tracker
- Heart Rate and Pulse Tracker
- Heart Rate Pro Health Monitor
- Heart Rhythm
- HOO Live – Meet and Chat
- Horoscope : Fortune
- Hunt Contact
- iCare – Find Location
- iConnected Tracker
- Icony
- Idle Gun Tycoo\u202an\u202c
- Instant Speech Translation
- Intelligent Translator Pro
- iSalam Qibla Compass
- iTranslator_ Text & Voice & Photo
- Keyboard Themes
- Keyboard: Virtual Projector App
- KFC Saudi – Get free delivery and 50% off coupons
- Language Translator-Easy&Fast
- Launcher iOS 15
- Launcher iOS for Android
- Lifeel – scan and test
- Live Mobile Number Tracker
- Live Wallpaper & Background
- Loca – Find Location
- Locatoria – Find Location
- Locker Tool
- Ludo Game Classic
- Ludo Speak v2.0
- Mine Easy Translator
- Mobile Things Finder
- My Chat Translator
- My Locator Plus
- OFFRoaders – Survive
- Parallax paper 3D
- Phone Caller Screen 2021
- Phone Finder by Clapping
- Phone Search by Clap
- PhoneControl Block Spam Calls
- Photo Effect Pro
- Photo Lab
- Piano Bot Easy Lessons
- PikCho Editor app
- Plant Camera Identifier
- Pony Video Chat-Live Stream
- Proof-Caller
- Prookie-Cartoon Photo Editor
- Pulse App – Heart Rate Monitor
- Qibla AR Pro
- Qibla Compass
- Qibla Compass (Kaaba Locator)
- Qibla correct Quran Coran Koran
- Qibla direction watch (compass)
- Qibla Finder – Qibla Direction
- Qibla Pass Direction
- Qibla Ultimate
- QR Code Reader – Barcode Scanner
- QR Reader Pro
- R Circle – Location Finder
- Racers Car Driver
- Safe Lock
- Scanner App Scan Docs & Notes
- Scanner Pro App: PDF Document
- Screen Mirroring TV Cast
- Second Translate PRO
- Skycoach
- Slime Simulator
- Smart Call Recorder
- Smart Spot Locator
- SnapLens – Photo Translator
- Soul Scanner – Check Your
- Squishy and Pop it
- Stickers Maker for WhatsApp
- Street Cars: pro Racing
- TagsContact
- Translate It – Online App
- Truck – RoudDrive Offroad
- TrueCaller & TrueRecoder
- Vector arts
- Video & Photo Recovery Manager 2
- VPN Zone – Fast & Easy Proxy
- What’s Me Sticker
- WiFi Unlock Password Pro X
- You Frame
- Zodiac : Hand
- Быстрые кредиты 24\7
You might also like:
New Cooperative hit by BlackMatter ransomware
Joker Trojan discovered in 11 Android apps: Reports
Android apps discovered with the ‘Joker’ malware: Report