New trojanised adware means Android users may have to bin their phones

New trojanised adware means Android users may have to bin their phones

Over 20,000 apps caught in new malware trend


Android users have long been warned of the dangers of downloading applications for their devices through third party stores, some so bad that they 'root' the device - needing expert attention, or even worse, forcing users to replace their phones altogether.

That warning has received another boost from mobile security company, Lookout, that discovered over 20,000 instances of trojanised malware disguised as popular applications, including Candy Crush, Facebook, GoogleNow, NYTimes, Okta, Snapchat, Twitter and WhatsApp, all downloaded from third-party app stores.

Lookout said malicious actors behind these families repackaged and injected malicious code into thousands of popular applications found in Google Play, and later published them to third-party app stores.

“We believe many of these apps are actually fully-functional, providing their usual services, in addition to the malicious code that roots the device,” the company said in a blog post.

Lookout said that, unlike older iterations of this type of malware that were ‘obvious and obnoxious’, these applications root the device without the user’s knowledge. The firm went on to say that users would likely not be able to remove the malware.

By rooting a device the malware creates an additional security risk for business and individuals alike, as other apps can then get root access to the device, giving them unrestricted access to files outside traditional permissions. Usually applications are not allowed to access the files created by other applications, however with root access, those limitation are easily bypassed.

Lookout said that, over the past year, it studied three interconnected families of adware. The first, Shuanet, Kemoge, (or ShiftyBug) and GhostPush. It claims that the three are responsible for over 20,000 repackaged apps.

Follow Us

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags malwareFacebookAndroidtwitterappstrojanLookout Mobile SecurityOktaWhatsAppSnapChatNYTimesCandy CrushGoogleNow



Join key decision-makers within Environmental, Social, and Governance (ESG) that have the power to affect real change and drive sustainable practices. SustainTech will bridge the gap between ambition and tangible action, promoting strategies that attendees can use in their day-to-day operations within their business.

EDGE 2023

EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.


ARN has celebrated gender diversity and recognised female excellence across the Australian tech channel since first launching WIICTA in 2012, acknowledging the achievements of a talented group of female front runners who have become influential figures across the local industry.

ARN Innovation Awards 2023

Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.

Show Comments