These 2 spyware apps caught sharing data with China; 5 things you must do

tech.hindustantimes.com:

Cybercriminals are increasingly managing to escape security checks and sneak their apps into Android smartphones. From malicious links on emails, social media, and texts or by simply hiding malware in otherwise innocuous-looking apps on app stores, these cybercriminals have become a huge menace for smartphone users. The worst part is that they put at risk the personal data and bank details of users. In the latest shocking event, two spyware apps were caught hiding on the Google Play Store that affected up to 1.5 million users.

This comes from mobile cybersecurity company Pradeo, which revealed in a blog post that two applications, which are from the same developer, feature similar malicious behaviour. The apps are masquerading as file management tools while they are silently stealing sensitive users' data. The alarming fact is that the spyware is sending all the crucial data of the users to various servers based in China.

The apps in question are, "File Recovery and Data Recovery". The former has more than 1 million installs, while "File Manager" is said to have more than 0.5 million installs. Both of these apps claim that they do not collect any sensitive data of users. However, as per Pradeo's report, the behavioural analysis engine shows that both apps are collecting personal data such as users' contact lists from the device itself and from all connected accounts such as email, social networks, media, real-time location, mobile country code, network provider name, network code of the SIM provider, operating system version number, and device brand and model.

First of all, smartphone users must uninstall these apps from their devices if they have been downloaded by any chance. Apart from this, follow these precautions: