Recently, Check Point’s IT security researchers discovered a sophisticated malware attack that targets Android users worldwide through the Google Play Store app store. As of now, a total of 150 million Android users have fallen prey for the malware. According to the report, this malware called “SimBad” infects mostly simulator games and it disguises as ads to avoid suspicion. In-depth research found that the malicious code is hidden behind the software development kit (SDK) for marketing and profitability purposes and is hard to find.
SimBad can redirect victims to the compromised website and download more malicious applications from the Play Store or remote server to implement phishing attacks. Check Point researchers Elena Root and Andrey Polkovnichenko said that this malicious SDK can easily fool developers. They may not even know the real intent of what they created. It can be seen that the attack was not initiated for a specific region, nor was the malicious program developed by the same developer.
SimBad works by infecting the target device, and the malicious application hides the malicious program icon, but when it is used, it displays ads in the background, resulting in fraudulent revenue. In this way, malware will not only attract attention, or even cause suspicion.
According to Check Point, most infected apps are simulator games, photo editors and wallpaper apps. Here are the top ten apps that are currently infected with SimBad malware:
- Snow Heavy Excavator Simulator (10,000,000 downloads)
- Hoverboard Racing (5,000,000 downloads)
- Real Tractor Farming Simulator (5,000,000 downloads)
- Ambulance Rescue Driving (5,000,000 downloads)
- Heavy Mountain Bus Simulator 2018 (5,000,000 downloads)
- Fire Truck Emergency Driver (5,000,000 downloads)
- Farming Tractor Real Harvest Simulator (5,000,000 downloads)
- Car Parking Challenge (5,000,000 downloads)
- Speed Boat Jet Ski Racing (5,000,000 downloads)
- Water Surfing Car Stunt (5,000,000 downloads)
Click HERE for a full list. The good news is that Check Point has reported to Google and many of these apps have been removed from the Play Store. However, if you have installed any of these apps make sure to remove it now and scan your device with trustworthy anti-virus software.