Home
News
You are here

Malware found in wallpaper apps infects 21 million Android devices via Google Play

38comments

By Cosmin Vasile

Updated: Sep 18, 2017, 7:58 PM

Android Apps

Lovely Wallpaper - one of the infected apps

The second largest outbreak to hit the Google Play Store that we know of is called ExpensiveWall, a new malware discovered in wallpaper apps, which is said to be responsible for the infection of 21.1 million Android devices.

Check Point's researchers discovered the malware early last month and issued a statement that contains all their findings related to ExpensiveWall.

Unfortunately, the malware infected at least 50 apps on Google Play, which were downloaded between 1 million and 4.2 million times before they were removed.

The ExpensiveWall malware was “packed” inside wallpaper apps, which allowed it to escape Google Play's built-in anti-malware protections. The “packed” method is frequently used by malware developers to encrypt malicious code.

Even though Google removed these infected apps after August 7, those who installed them before they were removed are still at risk, so they should manually remove them from their Android devices.

Since ExpensiveWall is “packed” inside an Android app, it will ask the user for several common permissions, such as SMS and internet access. If granted, the malware will start sending premium SMS messages and register users for other paid services that don't exist without the user's knowledge.

Although these permissions are pretty common for certain types of apps, there's absolutely no reason for a wallpaper app to request SMS permission or even internet access for that matter. Unfortunately, many Android users grant these permissions without thinking, which is probably one of the reasons it propagated so fast in the first place.

Well, there's really no way to stay protected as long as you don't pay attention to what permissions an app requests before being installed. ExpensiveWall is a very tricky malware that's hardly detectable by standard (read free) security solutions available in the Google Play Store.

What's even worse is that malware developers find new ways to pass Google Play Store's security protections more often than ever before. The bottom line is you can never be certain if your Android device is infected or not, so the best way to stay safe is to install high-profile apps and avoid the questionable ones.

source: Check Point

$349

$799

$450 off (56%)

Mint Mobile now sells the Google Pixel 10 with a massive $450 discount. The promo is available on select color variants with 128GB of storage. You also get a 12-month unlimited data plan for $180 instead of $360.

Buy at Mint Mobile

$524

$999

$475 off (48%)

Grab the pro-grade, compact Pixel 10 Pro at Mint Mobile with a 12-month unlimited plan, and you can save a huge $475. The data plan comes with a discount, too: 50% off, to be exact.

Buy at Mint Mobile

$499

$1199

$700 off (58%)

The high-end Gemini AI-enhanced Pixel 10 Pro XL is now available with a mind-blowing discount. You can now save $700 on the phone, plus 50% off unlimited 12-month plans.

Buy at Mint Mobile

$1399

$1799

$400 off (22%)

The foldable Pixel 10 Pro Fold is another standout holiday offer. Right now, you can get the device for $400 off at Mint Mobile. On top of that, you save $180 on 12-month unlimited data plans.

Buy at Mint Mobile

View Full Bio

Cosmin, a tech journalist with a career spanning over a decade, brought a wealth of experience to PhoneArena. His expertise lies in brands like Samsung and Nokia, and he has a keen interest in innovative technologies. After a brief stint in PR, Cosmin returned to tech journalism in 2016, committed to delivering clear and objective news. When he's not writing or appearing as a guest on TV and radio shows, Cosmin enjoys playing RPGs, watching Netflix, and nurturing his passion for history and travel.