Following the discovery of cybersecurity firm Avast that Google's own Play Store has a number of malicious applications that stalk people, the company made some necessary steps and promptly removed the apps. According to reports, Google removed seven apps that were identified as stalkerware - a kind of malicious app that stalks its users and other people.
The seven apps are listed on the Play Store as the following: Employee Work Spy, SMS Tracker, Spy Tracker, Mobile Tracking, Phone Cell Tracker, Spy Kids Tracker, and Track Employees Check Work Phone Online Spy Free.
These malicious apps were identified by Avast. The cybersecurity firm said that the apps have the capabilities to collect user information without the consent of the user. Among the data collected by the apps are call logs, contact information, location, and text messages.
A different investigation conducted by BleepingComputer found out that the apps are also capable of intercepting messages even if these messages are sent using an encrypted service like Viber and WhatsApp as long as the targeted device is rooted. According to Avast, the apps were installed more than 130,000 times.
According to Avast, one of the malicious apps, Employee Work Spy, described its service as being able to monitor the movements and activities of employees during workouts.
Another app called the Spy Tracker describes its service as allowing the parent to have total monitoring access to the activities of their children.
A separate report from CNET stated that Google removed four of the apps out of its Play Store on Tuesday. The other three were removed on Wednesday only after Avast's warning and investigation that proved the apps indeed violated the company's policy on commercial spyware.
With billions of smartphones running on the Android platform, it comes as no wonder why the Google Play Store is one of the most targeted online stores. The sheer number of potential victims made it a prime target for hackers looking for an easy payout.
Earlier this month, Google reported that a number of malware using the 'Agent Smith' method have been uploaded into its online store. Despite intricate and redundant security measures, hackers have always found ways how to circumvent these security protocols.
In a recent report, Google reported that more than 25 million Android smartphones were infected by Agent Smith malware. The malware was able to trick people into installing it after it disguises itself as a legitimate app like WhatsApp.
