Google Playstore

10.08.2022 Featured ALERT: New Malware Targeting Privacy of Android Users

Published 10th Aug, 2022

By Joseph Adeiye

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has flagged ‘HiddenAds’, a new malware which has infiltrated Google Play Store and can affect device performance or jeopardise users’ privacy. 

NCC-CSIRT described the virus, first identified by the McAfee Mobile Research Team, as high in damage potential on Tuesday. 

The CSIRT is the telecom sector’s cyber security centre set up by the NCC to focus on incidents in the telecom sector and how they might affect telecom consumers and citizens.

In a statement signed by Reuben Muoka, its director of public affairs, the NCC commission said that the malware infiltrates Google Play Store in the form of device cleaners or optimisation apps.

“Upon installation, it can run malicious services without the user opening the app. It also spams the user with irrelevant advertisements. The apps have received downloads ranging from 100,000 to over a million,” the statement read in part. 

READ ALSO: ALERT: New Android Malware ‘Flubot’ Stealing Credit Card Details

‘“Some of the apps HiddenAds masquerades as are: Junk Cleaner, EasyCleaner, Power Doctor, Carpet Clean, Super Clean, Meteor Clean, Strong Clean, Windy Clean, Fingertip Cleaner, Keep Clean, Full Clean – Clean Cache, Quick Cleaner, and Cool Clean.

“When a user installs any of the aforementioned apps, whether the user has opened the app or not, a malicious service is immediately installed on the device. The app will then attempt to blend into the app tray by changing its icon to the Google Play icon that every Android user is familiar with. Its name will also change to ‘Google Play’ or ‘Setting’. The device will then be bombarded with ads in a variety of deceptive ways, severely impairing the user experience.”  

According to NCC-CSIRT, Android users who install the compromised app will experience their device performance suffering significantly. Clicking on the ads may cause stealth downloads of new malware. Users may subscribe to services and be billed on a monthly basis without their consent. By extension, the malware jeopardises the privacy of such users.

READ ALSO: EXPOSED: The Secret Chats Of Russian Ransomware Hackers

NCC-CSIRT advised users to avoid downloading mobile applications they don’t trust. Users should also scan and delete any suspicious or malicious applications lingering on their mobile devices.

The legitimate Google Play app cannot be uninstalled, but counterfeits can be deleted on Android devices.

The NCC advisory recommended the installation of anti-virus or anti-malware software with a proven track record of detecting and removing malware.

Published 10th Aug, 2022

By Joseph Adeiye


Our Stories

Lagos Police Extort N5,000 From Motorists Over Car Documents

Fredrick Nwabufo, Former Deputy Editor of TheCable, Launches TheLink News

President Buhari

I Will Do Whatever It Takes to Protect My People, Akeredolu Replies Buhari

First Bank

Student Misses Test Over First Bank’s Failure to Release Her N50,000 Tuition

Dele Ologbosere

Dele Ologbosere, US-Based Nigerian, ‘Defrauds’ Lagos Car Dealer of $750


Weeks After Failed Transaction, Ecobank Still Holds Customer’s N20,000

Hammed Bashir with family and friends

Blogger Detained by DSS Over Dapo Abiodun Story Regains Freedom After 5 Months

Abidemi Rufai

Rufai Abidemi, Dapo Abiodun’s Ex-Aide, Jailed for Wire Fraud in the US

Police Officers

Imo Policemen ‘Kidnap’ Man Who Greeted Them With a Smile

Charles Lambert

Uganda’s Charles Lambert Refused to Pay Nigerian Investor — Then Tries to Bribe and Shut FIJ Up