[ad_1]
If you use a VPN on Android, it’s best not to ignore this new warning from security experts.
The use of VPNs has exploded in recent years, and this popular software can make web surfing safer and provide a way to watch geofenced UK content when you’re abroad. . Millions of people have installed his VPN today, but before you start downloading a new VPN to your Android smartphone, it’s worth knowing about a new warning.
Cyber security experts at HUMAN’s Satori Threat Intelligence have discovered and issued a warning that some VPNs are hiding a nasty surprise.
Once installed, a new threat called PROXYLIB can be used to perform personal data phishing and password spraying, as well as ad fraud. This is a brute force attack that attempts to log into your account using a password discovered in a previous data breach.
Even more concerning, all the apps found to contain the malware were available through Google’s Play Store, potentially giving them access to millions of users. That’s it.
All have since been banned by Google, which serves as a stern warning to be careful before installing any new software.
“HUMAN’s Satori Threat Intelligence team recently identified a cluster of VPN apps available on the Google Play Store that unknowingly transform users’ devices into proxy nodes,” the team explained in a blog post .
“28 applications containing the PROXYLIB SDK identified in this report have been removed from the Play Store. HUMAN remains committed to stopping the threat posed by PROXYLIB.”
Google’s Play Protect service has been confirmed to help thwart future attacks from PROXYLIB, so it’s wise to make sure this feature is turned on.
Unfortunately, the Satori Threat Intelligence team says more attacks may be on the way, and Android users should continue to be cautious when installing new VPNs.
“We expect threat actors to continue to evolve TTPs to continue selling access to residential proxy networks generated by apps containing PROXYLIB,” Satori added.
“HUMAN recommends that users download mobile apps only from official marketplaces such as Google Play Store and iOS App Store. Additionally, users should not allow malware or unwanted features such as PROXYLIB residential proxy You should avoid possible clones or “MODs” of popular apps. The node registrations described in this report are disguised as benign software. ”
You can find the complete list of apps considered affected by Google’s ban.It is currently unclear whether the developers knew their apps were infected with this threat or whether it was added at a later date by cybercriminals.
• Lite VPN
• Anim keyboard
• Blaze Stride
• Byteblade VPN
• Android 12 Launcher
• Android 13 Launcher
• Android 14 Launcher
•CaptainDroid Feed
• Free old classic movies
• Phone comparison
• Fast Fly VPN
• Fastfox VPN
• Fastline VPN
• Funny Char Ging animation
• Limo Edge
• Oko VPN
• Phone app launcher
• Quickflow VPN
• Sample VPN
• Safe sander
• Shine Secure
• Speed surf
• Swift Shield VPN
• Turbo Track VPN
• Turbo Tunnel VPN
• Yellow Flash VPN
• VPN Ultra
• Run a VPN
Of course, many VPNs are completely safe to use, but make sure they are reputable, have good reviews, and are downloaded from an official source.
[ad_2]
Source link
