The government has issued a warning regarding the presence of Android malware named Goldoson, which has reportedly infected several apps on the Google Play Store. The advisory urges users to exercise caution while downloading and installing apps, even from trusted sources, and to follow best practices such as limiting app permissions and verifying developers’ legitimacy and reviews.
According to reports, the Goldoson malware has infiltrated the Google Play Store through around 60 legitimate apps. It is believed to be a part of a third-party library used by app developers. Once installed, the malware can collect various data from mobile devices, including app details, information about wirelessly connected devices, and GPS location.
Additionally, Goldoson malware is capable of engaging in advertisement fraud by clicking ads without the user’s consent. Some of the infected apps identified include Swipe Brick Breaker, Bounce Brick Breaker, Korea subway Info: Metroid, GOM Player, GOM Audio-Music Sync lyrics, Pikicast, Live Score Real-Time Score, Compass 9: Smart Compass, Lotte World Magicpass, Infinite Slice, SomNote, L.Point with L.Pay, and Money Manager Expense & Budget.
While Google Play has reportedly blacklisted the aforementioned apps, users are advised to manually check and remove these apps if they were previously installed on their devices. The advisory emphasizes the importance of remaining cautious while downloading and installing apps, even from trusted sources. Users are encouraged to limit app permissions, verify the legitimacy of developers, and review user feedback before installing any apps on their devices.