Fake Android Apps To Avoid, What You Need To Know

Various malware over the years have disguised their true intentions, using the names of beloved and trusted services as carriers, targeting vital information on users' devices and taking control of these devices. Here's what you need to know and the fake Android apps to avoid.

For a malware maker, a surefire way to maintain unrestricted access to a device is if the owner themselves let the malware in. Malicious parties have developed many ways to deceive users and prevail in the mobile world.

Some of these deceptive apps pretend to have access to premium Netflix content from other countries but once installed, they obtain users' credentials and even monitor the activities of the device it's installed in. Deceptive malware like these can still find its way into Google Play Store.

Malicious software(malware) is an umbrella term for viruses, worms, trojans, and other harmful computer programs hackers use to wreak destruction and gain access to sensitive information. As Microsoft puts it, "[malware] is a catch-all term to refer to any software designed to cause damage to a single computer, server, or computer network."

Bitdefender researchers identified that two trojans that targeted bank users — TeaBot and FluBot — are hiding their more nefarious natures under fake versions of popular Android apps. TeaBot uses deceptive versions of VLC, Kaspersky, and Pluto TV. However, FluBot imitates popular shipping apps DHL and FedEx.

Immediately these apps are installed, they can obtain messages, perform keylogging, access Google Authentication codes, and even control the device. However, as they are bank trojans, they focus more on the device's banking apps.

Though these fake apps use the same name as the original but are usually tracked down and removed from the Play Store eventually they need to be removed if they are present on your smartphone as they can steal your money.

To get around that, TeaBot leads users to links that install the malware from outside the official Play Store. One confirmed method is using a fake Ad Blocker app. It doesn't block apps but still asks permission to draw over other apps. The app then puts out fake notifications that the device was compromised and advertises the malware disguised as legitimate apps. Instead of just using fake apps, FluBot uses direct SMS to distribute itself. Malicious parties obtain an infected device's contacts and then create custom SMS messages and send them straight from the infected device. These messages contain links to download fake apps.

To avoid these fake apps, it's also important to check an app's developer on the Play Store page to confirm the app is legitimate. As for the fake SMS messages from FluBot, users should always double-check why a contact sent a dubious link to them before downloading any Android app attached to a message. More importantly, always install apps from the Google Play Store, rather than through third-party sources.

Here are some of the apps to avoid:

All Good PDF Scanner

Mint Leaf Message-Your Private Message

Unique Keyboard - Fancy Fonts & Free Emoticons

Tangram App Lock

Direct Messenger

Private SMS

One Sentence Translator - Multifunctional Translator

Style Photo Collage

Desire Translate

Talent Photo Editor - Blur focus

Care Message

Blue Scanner

Hummingbird PDF Converter - Photo to PDF

All Good PDF Scanner