Security expert talks about half a billion Android malware downloads over footage of iPhones

[youtube http://www.youtube.com/watch?v=Q8xz8xKEFvU]

Here’s a clip of cybersecurity expert Gary Miliefsky explaining how all of the top ten flashlight apps on the Google Play Store are malware over b-roll footage of iPhone users toggling the flashlight in Control Center. In fairness to the editor who put the package together, there probably isn’t a whole lot of file footage of people opening random free flashlight apps on an Android phone.

The actual information in the clip is somewhat amusing (if you’re an iPhone owner) or frightening (if you don’t pay attention to the Android apps you’re downloading). According to Miliefsky, a large number of flashlight apps on the Google Play Store are actually transmitting user data including address book entries and personal information to multiple endpoints in at least three different countries.

Half a billion devices have apparently downloaded the malicious software, which Miliefsky says can only be fully removed via a full factory reset. Whether these app developers are using the data for anything nefarious hasn’t been determined but it’s best to be on your guard when downloading apps, even from official sources like Google Play. Miliefsky’s suggestion is to find a flashlight app with a very small file size since larger apps likely contain a large amount of malicious code, but for advice from a security expert that doesn’t seem like a great way to be sure of an app’s intentions.

Comments

  1. @MikeBeas in regards to #FoxNews report by #BretBaier theFlashlight Apps in the iTunes store – GEOlocate, use NET, access WEBCAM, risky too.

  2. António Chumbo - 8 years ago

    “If you don’t have an iPhone, you don’t get malware from flashlight apps.”

  3. Gustavo Parrado (@xyrer) - 8 years ago

    This is so not true

  4. Lucas - 8 years ago

    You should probably tell people that the OS (Android) is rather secure. Unlike IOS, you are told specifically what portions of the phone OS the app needs access to. If it says it wants GPS or Contacts or anything besides camera or flash, you’d best move along. Learn about the technology you use everyday for pete’s sake. You wouldn’t go use a power saw if you didn’t know how, just because a phone won’t (probably) kill you, you should still understand how the thing works.