BadNews for Android users: New malware disguises itself as an ad network

Advertisement
By Anupam Saxena | Updated: 22 April 2013 12:25 IST
Mobile security company Lookout claims to have discovered BadNews, a new malware family that's affecting Android apps.

The company found the malware in 32 apps across four different developer accounts in the Google Play store. Talking about it in a blogpost, Lookout mentioned that the affected apps have been downloaded between 2,000,000 - 9,000,000 times. Google has removed all the apps and suspended accounts of the specific developers, as per Lookout.

Half of the affected apps were found to be in Russian and AlphaSMS, an SMS fraud malware that was also being pushed by BadNews is found to be involved in committing premium rate SMS fraud in the Russian Federation and neighbouring countries such as the Ukraine, Belarus, Armenia and Kazakhstan. The apps that feature the malware range from Russian dictionary apps to popular games to even innocent ones like apps offering salad recipes.

BadNews works by disguising as an ad network and later pushes malware to the user's device after an affected app is installed. It sends fake news messages, prompts users to install apps and sends sensitive information such as the user's phone number and device ID to its Command and Control server.

Following initial activation, the BadNews contacts its server every four hours for new instructions while sending sensitive information such as the device's phone number and its serial number (IMEI) to the server. The server replies with instructions including displaying (fake) news to users, and asking them to install new app updates. The app updates are new malware apps disguised with names of popular apps like Skype.

The malware acts as a challenge to the people who filter apps for malware at the Play Store as it's not directly included in the app and comes into existence after the app connects to the malware server.

However, Lookout mentions that it is not clear whether some or all of these apps were launched with the intent of spreading the BadNews malware or developers were caught unaware as they included code to earn money thinking that BadNews was just an ad network for monetization, as it's disguised as a fraudulent monetization SDK.
Post your comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Android, Android devices, Android mobiles, malware, mobiles
Google Play revenue surges, but Apple's App Store still dominates: Survey
TweetDeck for Android and iOS to stop functioning May 7
Advertisement

Related Stories

Vivo Confirms OriginOS 6 Update Rollout Schedule in India: Check Full Release Timeline
17 October 2025
CERT-In Highlights Zoom Security Flaws That Could Let Hackers Access Meeting, Sensitive Information
17 October 2025
OnePlus Announces OxygenOS 16 With AI Productivity Suite, Cross-Ecosystem Connectivity With Apple Watch
17 October 2025
WhatsApp Channel Quiz Feature Spotted in Development, Could Launch Soon
16 October 2025
Honor Launches Android 16-Based MagicOS 10 With AI, Connectivity Upgrades: Eligible Devices, Rollout Schedule
16 October 2025
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Vivo Confirms OriginOS 6 Update Schedule in India: See Release Timeline
  2. Bhagwat Chapter 1: Raakshas OTT Release Details Revealed
#Latest Stories
  1. Scientists Create Most Detailed Radio Map of Early Universe Using MWA
  2. Mayor of Kingstown Season 4 OTT Release: Know When, Where to Watch Jeremy Renner's Crime Drama
  3. Our Fault Is Streaming Now: Know All About This Gabriel Guevara and Nicole Wallace Starrer
  4. The Conjuring: Last Rites Is Now Streaming Online: Know Where to Watch the Latest Installment from the Horror Franchise
  5. Delhi Crime Season 3 OTT Release: Know When to Watch This Shefali Shah Thriller Series
  6. Vast Space to Launch Haven-1, the World’s First Private Space Station in 2026
  7. Atmospheric Carbon Dioxide Soars to 424PPM, Marking Biggest Yearly Jump Ever
  8. Black Hole Tears Star Apart, Sends Out Powerful Flares Six Months Later
  9. Shakthi Thirumagan OTT Release: When, Where to Watch Vijay Antony-Starrer Action Thriller Online?
  10. Former Assassin's Creed Boss Says He Was Asked to 'Step Aside' by Ubisoft
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.