Uninstall Fake App Called “The Album by Google Photos”

October 30, 2018

Written by wukovits

If you take a lot of photos with your Android device, you’re probably constantly on the lookout for a better way to organize them and access them.  That’s exactly what the authors of the malicious app called “The Album, by Google Photos” are hoping for.

The app put in a brief appearance on the Microsoft store, where it claimed to be from Google but it’s clearly not.  Unfortunately, the authors have gone to great lengths to make it appear legitimate, and as such, it has been downloaded and installed an alarming number of times.

When this app is installed and run for the first time, users are presented with a (legitimate) Google sign in page.  It is not known whether the authors of the app siphon user login credentials from this page, but it’s certainly possible. So if you have installed the app but haven’t run it yet, don’t log in.

Once you’re logged in, the app will connect to a malicious URL and download a configuration file.  Using the information contained in the config file, it will begin running in the background, displaying ads invisibly and then clicking on them, earning revenue for the app’s creators and slowing your Android device to a crawl in the process.

Note that the authors were careful, but only to a point.  Although the ads themselves are invisible, if those ads have an audio component, the user will hear the sounds associated with the ad, although of course, they won’t have any clear indication of where the sounds are coming from.  This is, in fact, how researchers became aware of the malicious nature of the app.

If you’ve downloaded this app, please uninstall it immediately.  Doing so will improve your device’s performance and stop those sounds that have no apparent source from troubling you further.

Used with permission from Article Aggregator

Related Articles

Some Amazon Device Features May Have Security Risks

Have you heard of Amazon Sidewalk? If not, it's definitely something you should be aware of. Depending on your point of view, the new feature, which was enabled by default on a wide range of Amazon devices by default on June 8 of this year (2021) is either...

Email Unsubscribe Scam Can Easily Fool Any User

Scammers are increasingly relying on a tried and true bit of social engineering to fool unsuspecting users into unwittingly signing up to receive a flood of additional spam email. They accomplish this by blasting out an email asking recipients if they wish to...

Update VMWare Software Immediately To Avoid Possible Attack

The US Cybersecurity and Infrastructure Security Agency recently issued a warning to all companies running VMware Vcenter Server and VMware Cloud Foundation. They are asking them to download and apply the latest security patches as soon as possible because attackers...

Send us a message

Your message was sent.

Thank you for contacting Bayou Technologies. We'll be in touch soon!

Need help? support-icon