Security

'Mummy, what's felching?' Tot gets smut served by Android app

Google’s Play Store fails again

By Iain Thomson in San Francisco

74 SHARE

Researchers have found a batch of over 60 malware-carrying apps in Google's Play Store designed to rob mobile users or show them pornography, all with a kid-friendly theme.

The malware, dubbed AdultSwine by security shop Check Point, was found in apps like "Drawing Lessons Lego Star Wars", "Fidget spinner for Minecraft" and "Spinner Toy for Slither", along with a large number of Android games. The apps were downloaded between three and seven million times before the infection was caught.

One father complained to Google that the software had exposed his four-year-old son to "a bunch of thilthy (sic) hardcore porn pictures".

Time for a conversation, about dictionaries at the very least

AdultSwine offers a three-pronged approach to the operator. It can throw up a fake virus warning screen and get the user to download cleaning software that would more effectively pwn the phone, trick people into sending premium SMS messages with the offer to win a prize or just throw up websites aimed at the amateur gynecologist.

"We’ve removed the apps from Play, disabled the developers' accounts, and will continue to show strong warnings to anyone that has installed them," a Google spokesperson told The Register. "We appreciate Check Point's work to help keep users safe."

Another month, another malware outbreak in Google's Play Store

READ MORE

Such exclusively family-based apps are checked manually by Google for malware and ad content, according to those familiar with the situation, but the AdultSwine code was put out for general release. That gets machine checked and, despite the Chocolate Factory's AI virus-hunting protestations, past experience and research suggests malware writers are finding Google's malware seeking bots easy to evade.

"Apps infected with the nasty 'AdultSwine' malware are able to cause emotional and financial distress," said Check Point in a blog post.

"Due to the pervasive use of mobile apps, 'AdultSwine' and other similar malware will likely be continually repeated and imitated by hackers. Users should be extra vigilant when installing apps, particularly those intended for use by children." ®

Sign up to our NewsletterGet IT in your inbox daily

74 Comments

More from The Register

Google Play Store spews malware onto 9 million 'Droids

How did these get through the net?

Microsoft emergency update: Malware Engine needs, erm, malware protection

Stop appreciating the irony and go install the patch now

Windows 10 or Cisco Advanced Malware Protection: Pick one

Redmond warns that the malware tool doesn't play nice with the latest upgrade

Google's secret to a healthy phone? Remote-controlling your apps

Look Ma, no not much malware!

Facebook, Google, Microsoft, Twitter make it easier to download your info and upload to, er, Facebook, Google, Microsoft, Twitter etc...

GDPR put a gun to their heads

Google Play Protect is 'dead last' at fingering malware on Android

Don't expect ads giant to stop all software nasties for you – it certainly can't

Microsoft patched more Malware Protection Engine bugs last week

Redmond's out-of-band advisory landed after the bugs were fixed

Google’s Android Emulator gains AMD and Hyper-V support

But Intel’s HAXM is still ‘Droid’s preferred hypervisor

Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more

Roundup Plus, SystemD gets system de-bugged, again

Malware-flinger stingers, indexing and ever-changing data access patterns

Roll up, roll up for an end-of-holiday storage roundup