Cyber criminals are making fake VPN apps that look like real services to spy on people and steal money, Google has warned.
The threat affects about 3.9 billion Android users. Many phone owners are tricked into installing harmful apps that put their data and money at risk.
One scheme saw a suspicious security firm publish VPN apps on official app stores to spread malware and run online scams.
“These actors tend to impersonate trusted enterprise and consumer VPN brands or use social engineering lures, such as through sexually-suggestive advertising or by exploiting geopolitical events, to target vulnerable users who seek secure internet access,” said Laurie Richardson, vice president of trust and safety at Google.
“Once installed, these applications serve as a vehicle to deliver dangerous malware payloads including info-stealers, remote access trojans and banking trojans that exfiltrate sensitive data such as browsing history, private messages, financial credentials and cryptocurrency wallet information.”
Google also urged Android users to stay safe by only downloading VPN apps from official sources and by checking for the VPN badge in the Google Play store.
I dont trust Googles warning, maybe theyre just trying to scare us.
I think Google is just trying to scare us into using their VPN!
I think Google is overreacting, fake VPN apps cant be that dangerous.
I think Google should just ban all VPN apps to avoid confusion.
I think Google should just ban all VPN apps altogether to avoid confusion.
I think Google should just ban VPN apps altogether. Privacy invasion, anyone?
I think Google should just ban all VPN apps to avoid confusion.