Porn clicker returns to Google Play to infect unsecured Android devices

Share on facebook
Share on twitter
Share on linkedin
Share on email

Trojan Porn Clicker, masquerading as a popular app called Dubsmash, has yet again returned to the Google Play Store after being pulled from the platform almost a month ago, according to security firm Eset.

Fake Dubsmash 2 from Google Play ? available between May 20 and May 22
Fake Dubsmash 2 from Google Play ? available between May 20 and May 22

Surfacing for the first time more than a month ago, Dubsmash 2 has made its return appearance on the Google Play Store last week. Since then it has been successfully re-uploaded four times ? always containing the same malicious code, said Eset.

Although the fake app that bears the malicious code poses no actual harm to the average user, the problem arises with pay-per-click campaigns, as the porn clicker trojan was created to perform click fraud.

Once activated, the malware generates a lot of Internet traffic, resulting in high bills. Interestingly, Eset found that this app exclusively attacks Android devices without a security solution installed.

?If no AV software is installed then Dubsmash 2?s true functionality is activated. The trojan then proceed to request porn links from its server. These links will be loaded every 60 seconds into WebView inside an invisible window,? said Luk?? ?tefanko, malware researcher at Eset.

Facebook Comments

Join Our Newsletter! Zero spam, unsubscribe anytime!






Latest Posts

Archives