Two malicious apps on Google Play were found distributing MobOk malware in order to steal money from users through unwarranted subscriptions. The two apps, namely Pink Camera and Pink Camera 2, were advertised as photo-editing apps, while they hid the MobOk malware to perform a number of malicious activities.
Security researcher Igor Golovin of Kaspersky came across these apps on Google Play, which have been downloaded over 10,000 times.
How does it work?
Golovin suggested that the official platform, Google Play, allowed the app developers to distribute their malicious apps to as many users as possible. “Analysis of pages loaded by the malware revealed the targets to be users from different countries, while its distribution through an official app store helped the authors to spread it far and wide,” wrote the researcher.
As of now, both apps have been removed from Google Play.