WARNING: Free Android music player app found in the Google Play Store contains malware


An Android music player app that was available to download in the Google Play Store has been found to contain malware.

The “Super Free Music Player” app was uploaded to the Google Play Store on March 31 and has been downloaded between 5,000 and 10,000 times.

However, security researcher Richard Yu from SophosLabs found that the app is malicious and contains a highly sophisticated form of malware that was able to evade detection by Google’s security.

According Yu, the “Super Free Music Player” app contains the same malware found in the BrainTest malware that was first discovered in 2015.

The malware is capable of gaining root access to a smartphone and bombarding the user with advertisements. It can also deploy what is known as payload that can be used to steal passwords and login credentials.

Super Free Music Player app

Google has since removed the app from the Play Store but as it has already been downloaded up to 10,000 times, some users may still be at risk having unwittingly installed the app.

The news comes just a week after more than 2 million Android devices were believed to have been infected with malware after downloading apps from the Google Play Store.

The apps in question contained the FalseGuide malware, so called because it is hidden inside apps which appear to be guides to popular games such as Pokemon Go and Fifa.

The advice to users, as always, is to make sure you have an antivirus app installed on your device and that it is kept up to date. Also make sure all software is running the most up to date version possible.

As the examples here show, just because an app is available to download the Google Play Store, it does not necessarily mean it is safe. Try to stick to downloading apps from recognised or well known developers.


Comments are closed.