[ad_1]
ESET researchers have uncovered the malicious methods used by these loan apps to bypass Google Play Store restrictions. Android-apps-reach-new-depths/” rel=”nofollow” target=”_blank”>exposure Did. This malware with attractive interface promises to provide instant funds to the users with huge interest terms. Primarily targeting users in Africa, Latin America, and Southeast Asia, these spylone apps not only pass KYC checks, but also display fake information on official-looking websites, including stock photos masquerading as photos of employees. Also included.
Once users get the loan, these apps request several sensitive permissions from them, such as access to camera, contacts, SMS, call logs, photos, Wi-Fi details and calendar details. This data is then sent to the app's server.
In violation of Google's Financial Services policy, these apps keep repayment periods unrealistically short, forcing users to make payments with extremely high interest rates. Users reported facing pressure to repay amounts as low as 450 pesos (roughly Rs. 2,160) with an additional interest of 549 pesos (roughly Rs. 2,640), which comes to a total of 999 pesos (roughly Rs. 4,800).
ESET notified Google about 18 apps, 17 of which were removed. However, one app remains on the store in the form of a new version. Listed apps include 4S Cash, AA Kredit, Amor Cash, Cartera grande, Cashwow, CrediBus, EasyCash, EasyCredit, Finupp Lending, FlashLoan, Go Crédito, GuayabaCash, Instantáneo Préstamo, Préstamos De Crédito-YumiCash, PréstamosCrédito, Rápido Crédito and TrueNaira .
However, even after being removed from the Play Store, these apps may remain on users' devices until manually removed. Users who have these apps should uninstall them immediately.
[ad_2]