Security

'Mummy, what's felching?' Tot gets smut served by Android app

Google’s Play Store fails again

By Iain Thomson in San Francisco

74 SHARE

Researchers have found a batch of over 60 malware-carrying apps in Google's Play Store designed to rob mobile users or show them pornography, all with a kid-friendly theme.

The malware, dubbed AdultSwine by security shop Check Point, was found in apps like "Drawing Lessons Lego Star Wars", "Fidget spinner for Minecraft" and "Spinner Toy for Slither", along with a large number of Android games. The apps were downloaded between three and seven million times before the infection was caught.

One father complained to Google that the software had exposed his four-year-old son to "a bunch of thilthy (sic) hardcore porn pictures".

Time for a conversation, about dictionaries at the very least

AdultSwine offers a three-pronged approach to the operator. It can throw up a fake virus warning screen and get the user to download cleaning software that would more effectively pwn the phone, trick people into sending premium SMS messages with the offer to win a prize or just throw up websites aimed at the amateur gynecologist.

"We’ve removed the apps from Play, disabled the developers' accounts, and will continue to show strong warnings to anyone that has installed them," a Google spokesperson told The Register. "We appreciate Check Point's work to help keep users safe."

Another month, another malware outbreak in Google's Play Store

READ MORE

Such exclusively family-based apps are checked manually by Google for malware and ad content, according to those familiar with the situation, but the AdultSwine code was put out for general release. That gets machine checked and, despite the Chocolate Factory's AI virus-hunting protestations, past experience and research suggests malware writers are finding Google's malware seeking bots easy to evade.

"Apps infected with the nasty 'AdultSwine' malware are able to cause emotional and financial distress," said Check Point in a blog post.

"Due to the pervasive use of mobile apps, 'AdultSwine' and other similar malware will likely be continually repeated and imitated by hackers. Users should be extra vigilant when installing apps, particularly those intended for use by children." ®

Sign up to our NewsletterGet IT in your inbox daily

74 Comments

More from The Register

It gets worse: Microsoft’s Spectre-fixer wrecks some AMD PCs

Updated KB4056892 is not your friend if you run an Athlon

Oracle gets busy with Lazy FPU fix, adds more CPU Spectre-protectors

Oracle Linux and VM get their innoculations

Microsoft lobs Skylake Spectre microcode fixes out through its Windows

Just go install Intel's patch while we hunt the next CPU-level security flaw in Intel's silicon

Microsoft, Google: We've found a fourth data-leaking Meltdown-Spectre CPU hole

Design blunder exists in Intel, AMD, Arm, Power processors

Google's ghost busters: We can scare off Spectre haunting Chrome tabs

Site Isolation keeps pages fully separate on Windows, Mac, Linux, Chrome OS

More stuff broken amid Microsoft's efforts to fix Meltdown/Spectre vulns

This is going to take a while

Guess who else Spectre is haunting? Yes, it's AMD. Four class-action CPU flaw lawsuits filed

Punters not happy with handling of vulnerability confessions

Meltdown-and-Spectre-detector comes to Windows Analytics

After flubbing its early responses, Microsoft's thrown sysadmins a bone

SHL just got real-mode: US lawmakers demand answers on Meltdown, Spectre handling from Intel, Microsoft and pals

Pact of silence questioned

Microsoft works weekends to kill Intel's shoddy Spectre patch

Out-of-band patch may assuage user anger over Intel crudware, closed-club disclosure process