An Android music player app that was available to download in the Google Play Store has been found to contain malware.
The “Super Free Music Player” app was uploaded to the Google Play Store on March 31 and has been downloaded between 5,000 and 10,000 times.
However, security researcher Richard Yu from SophosLabs found that the app is malicious and contains a highly sophisticated form of malware that was able to evade detection by Google’s security.
According Yu, the “Super Free Music Player” app contains the same malware found in the BrainTest malware that was first discovered in 2015.
The malware is capable of gaining root access to a smartphone and bombarding the user with advertisements. It can also deploy what is known as payload that can be used to steal passwords and login credentials.
Google has since removed the app from the Play Store but as it has already been downloaded up to 10,000 times, some users may still be at risk having unwittingly installed the app.
The news comes just a week after more than 2 million Android devices were believed to have been infected with malware after downloading apps from the Google Play Store.
The advice to users, as always, is to make sure you have an antivirus app installed on your device and that it is kept up to date. Also make sure all software is running the most up to date version possible.
As the examples here show, just because an app is available to download the Google Play Store, it does not necessarily mean it is safe. Try to stick to downloading apps from recognised or well known developers.
Jonathan is our Google Nexus and Android enthusiast. He is also fanatical about football which makes it all the more strange that he should support Stockport County. In addition to writing about tech, Jonathan has a passion for fitness and nutrition and has previously written for one the UK’s leading watch and horology websites.