Hackers tampered with APKPure store to distribute malware apps


APKPure, one of the largest alternative app stores outside of the Google Play Store, was infected with malware that let the attackers to distribute Trojans to Android devices.

The APKPure client version 3.17.18 was tampered to trick unsuspecting users into downloading and installing malicious applications linked to the malicious code built into the APKpure app.

The findings were reported by researchers from Doctor Web and Kaspersky. According to Doctor Web, the trojan belongs to the dangerous Android.Triada malware family capable of downloading, installing and uninstalling software without users’ permission.

According to Kaspersky, the APKPure version 3.17.18 was tweaked to incorporate an advertisement SDK that acts as a Trojan dropper designed to deliver other malware to a victim’s device.

This component could show ads on the lock screen; open browser tabs; collect information about the device; and download other malware.

In response to the findings, APKPure has released a new version of the app (version 3.17.19) on April 9 that removes the malicious component. The developers stated that they have fixed the potential security problem, making APKPure safer to use.

Priyanka R
Cyber Security Enthusiast, Security Blogger, Technical Editor, Author at Cyber Safe News

    Joker malware infected over 500,000 Huawei Android devices

    Previous article

    Criminals spread malware using website contact forms with Google URLs

    Next article

    You may also like

    More in Malware


    Leave a reply

    Your email address will not be published. Required fields are marked *