(Photo/Pixabay)

Malwarebytes, an information security company, recently found four Android tool-type apps on the Google Play Store platform. They were repeatedly implanted with different variants of Android/Trojan.HiddenAds malicious code. Keep it normal to evade detection, however, after a few days, the phone will start popping ads for no reason, and secretly open various phishing websites in the Chrome browser without the user noticing, the main purpose is to defraud Earnings from clicks on ads.

It is worth noting that these four apps are all from the same developer named "Mobile apps Group". The app names are: Bluetooth Auto Connect with Bluetooth automatic connection function, Mobile transfer: smart switch, Driver: Bluetooth, With Wi-Fi, USB and Bluetooth App Sender, these four apps have accumulated more than one million downloads worldwide.

As of press time, the above four apps have not been forcibly removed by Google.

Please read on...

(Photo taken from the official website of Google Play Store)

Malwarebytes analysis pointed out that even if the mobile device is locked, malicious code will run in the background to open tabs without authorization, and a long list of phishing websites will appear from the user's browser history.

After a pop-up ad, another new ad impression is also set to be displayed at regular intervals.

Some of the phishing websites are harmless, while others contain adult pornography. In addition, sometimes the screen will pop up a reminder that the device is infected and need to click the "Update" button. The purpose is to deceive unknown people. The malicious user clicks to trigger malicious advertisements, and seeks the illegal benefits of advertising profit.

The above-mentioned four tool-type apps launched by the developer "Mobile apps Group" are very cunning and will release clean and updated versions after a period of time to meet the official review of Google Play and be successfully launched.

However, every once in a while, the old strategy is repeated, and when the next update is released, it will take the opportunity to implant a different variant of the malicious code.

To remind Android phone users, if you have downloaded the above four apps before, it is recommended to delete them from your phone as soon as possible.

In addition, antivirus software that can detect and scan malicious code can also be installed on the mobile phone, adding an additional protection filtering mechanism.