Sophoslabs has published a report in which the company claims to have identified at least 25 Android apps published on the official Google Play store that contain script facilitating the ‘cryptojacking’ of users’ computing resources.
25 Apps Containing Mining Malware Identified on Google Play Store
Sophoslabs claims to have discovered 25 apps on the official Google Play store that contain cryptojacking code within them.
A report published by the company asserts that the apps in question have “been downloaded and installed more than 120,000 times.”
The apps accused on containing cryptojacking code are LHDS Vendors – which is published by Taste of Life Group, Mobeleader from Abser Technologies S.L., Palkar by Palpostr.com, Dizi Fragmanları İzle from Oguzhan Kivrak, Helper for Knight Game from Evgeny Solovyov, Game Viet 2048 from Thanhtu Media, Trance Droid by Happy Appys, A Paintbox For Kids by Uwe Post, Afterlife: RPG Clicker CCG by Levius LLC, Dominoes Games from Fun Board Games, Info Guru Pendidikan by Cakrawala Pengetahuan, Lighton by Buyguard, Tapbugs and Dreamspell – both published by Riccotz, and 11 apps published by Gadgetium – all of which comprised “preparation apps for standardized tests given in the [United States].”
88% of Cryptojacking Apps Contain Coinhive Implementation
22 of the 25 apps identified by Sophoslabs were found to contain an implementation of Coinhive’s code.
Lighton and Mobeleader were found to hosting mining scripts on their own servers – “presumably to thwart firewalls or parental controls/reputation services that might block Coinhive’s domain by default.”
A Paintbox for Kids was found to be running Xmrig – “an open source CPU miner that can mine several cryptocurrencies in addition to XMR.”
Cryptojacking Apps Discovered in Spite of Ban
The discovery of the apps comes in spite of the Google Play Store’s July ban on “apps that mine cryptocurrency on devices.”
The ban followed several other undertaking perceived to comprise a crackdown on crypto across Google’s platforms – including the prohibiting of cryptocurrency mining extensions from the Chrome Web Store in April, and the banning of advertising content relating to “cryptocurrencies and related content” from Google’s platforms in March.
This week, Google showed the first signs of softening its stance on cryptocurrency since launching its crackdown, announcing that “The Google ads policy on financial products and services will be updated in October 2018 to allow regulated cryptocurrency exchanges to advertise in the United States and Japan.”
Do you think that scammers will continue attempting to publish cryptojackers on Google’s Play Store despite the company’s ban? Share your thoughts in the comments section below!
Images courtesy of Shutterstock
At Bitcoin.com there’s a bunch of free helpful services. For instance, have you seen our Tools page? You can even lookup the exchange rate for a transaction in the past. Or calculate the value of your current holdings. Or create a paper wallet. And much more.