Masaüstü Reklam
Siber Suclular Darknet Uzerinden Zararli Google Play Uygulamalarini 20 Bin Abd Dolarina Varan Fiyatlarla Satiyor 4437.jpg

Criminals in Siberia are selling harmful Google Play applications through the Darknet at prices up to 20,000 US dollars

Kaspersky experts, who analyzed the harmful application offers on Google Play sold on the Darknet, discovered that malicious mobile applications and store developer accounts found buyers for prices up to 20,000 US dollars. Researchers using Kaspersky Digital Footprint Intelligence collected samples from nine different Darknet forums where product and service transactions for malicious software were made. The report sheds light on how threats sold on the Darknet appear on Google Play, as well as the current offers, price ranges, and details of communication and agreements between cybercriminals.

Although official application stores are closely monitored, moderators may not always detect malicious applications before they are uploaded to the platform. Every year, many malicious applications manage to infiltrate Google Play, but are only discovered and removed after victims become infected. Cybercriminals come together on the Darknet, a complete digital underground world with its own unique rules, prices, and reputation hierarchy, to buy and sell malicious applications on Google Play. Furthermore, they offer additional functions to promote and even advertise their prepared applications.

Just like legal forums used to sell products, there are various Darknet offers available for customers with different needs and budgets on the Darknet platform. Cybercriminals need a Google Play account and malicious download code (Google Play Loader) to publish a malicious application on Google Play. Developer accounts are relatively cheap on the platform. A developer account can be purchased for as low as $60, and sometimes for $200. The prices of malicious loaders range from $2,000 to $20,000, depending on the complexity of the software, how modern and functional the code is, how widespread it currently is, and what additional features it has.

In most cases, distributed malicious software is hidden under cryptocurrency trackers, financial applications, QR code readers, and even dating applications. Cybercriminals also show how many times the legal version of the application has been downloaded. This reveals how many potential victims could be infected with the virus by updating and adding malicious code to the application. Recommendations mostly consist of applications with 5,000 or more downloads.

A cybercriminal is selling a Google Play threat disguised as a cryptocurrency tracker.

Cyber criminals can make it difficult for cybersecurity solutions to detect their malicious code by hiding the application code for an additional fee. To increase the number of downloads of the malicious application, many attackers also offer to purchase installations. They redirect traffic to the application through Google ads, attracting more users to download the application. The cost of installations varies by country, with an average price of $0.50 USD and bids ranging from $0.10 to several dollars.

In this method, scammers offer three different business models: a share of the final profit, leasing, or buying the entire account or threat. Some sellers even organize auctions to sell their goods, as many sellers limit the number of lots sold. In one offer examined by Kaspersky, the starting price was $1,500 USD, the auction progressed in $700 USD steps, and the buy-it-now price was set at $7,000 USD.

Darknet vendors can also offer to publish the malicious application for the buyer. This way, the buyer can obtain all the victim’s data remotely without directly interacting with Google Play. Although the developer could easily deceive the buyer at first, behaviors such as maintaining and protecting their reputation among Darknet users, guaranteeing their work, and accepting payment after the terms of the agreement are fulfilled are common. To reduce risks when making deals, cybercriminals generally use intermediary services, known as “escrow.” Escrow can be provided by a private service as a shadow platform or positioned as a third party that does not deal with the results of the transaction.

Kaspersky Security Expert Alisa Kulishenko says: “Malicious mobile applications continue to be one of the most significant cyber threats targeting users. In 2022, more than 1.6 million mobile attacks were detected through this method. Fortunately, the quality of cybersecurity solutions that protect users from these attacks is also improving over time. We have seen messages on the Darknet complaining that cybercriminals are finding it increasingly difficult to load harmful applications onto official stores. However, this also means that methods can become more sophisticated. Therefore, users should be vigilant and carefully check which applications they download.”

You can find more examples of threats sold on Google Play through the entire report on Securelist about the darknet.

Kaspersky recommends the following to stay safe from mobile threats:

Check the permissions requested by the applications you use, and think twice before granting permission to the application, especially when high-risk permissions such as Accessibility Services are involved. For example, the only permission a flashlight application needs is to turn on the flashlight. It shouldn’t even need access to the camera. A reliable security solution can help you detect malicious applications and adware on your device before they start engaging in malicious activities. iPhone users have access to some privacy controls provided by Apple. If users believe that the requested permissions are unnecessary, they can remove and block access to the applications’ photos, contacts, and GPS connections. Update your operating system and important applications as updates are released. Many security issues can be resolved by installing updated versions of software.

Source: (BYZHA) Beyaz Haber Ajansı

Masaüstü Reklam

Magnum Exhibition In Istanbul 77 Years Of Legacy And Contemporary Stories Together
Magnum Exhibition in Istanbul: 77 Years of Legacy and Contemporary Stories Together
Şule Aryay Meets Art Lovers At Pera Palace With The 'deep Silence' Exhibition!
Şule Aryay Meets Art Lovers at Pera Palace with the ‘Deep Silence’ Exhibition!
10th Year Celebration A Striking Purple Themed Exhibition By The In Pursuit Of Colors Community
10th Year Celebration: A Striking Purple-Themed Exhibition by the In Pursuit of Colors Community
Esra Banguoğlu Oğut – Özge Zeki, Conversations In Pursuit Of Happiness, Episode 5
Esra Banguoğlu Oğut – Özge Zeki, Conversations in Pursuit of Happiness, Episode 5
Zeynep Pia Bugay With Eylül Aşkın… Exclusive Interview
Zeynep Pia Bugay With Eylül Aşkın… Exclusive Interview
The New Culture Art And Literature E Magazine Vede Is Preparing To Meet Its Readers!
The New Culture-Art and Literature E-Magazine “VEDE” is Preparing to Meet its Readers!
The Evolution Of Art, Episode 49 – Zahit Büyükişliyen, Günsu Saraçoğlu – Evolution Art, Mikado Communication
The Evolution of Art, Episode 49 – Zahit Büyükişliyen, Günsu Saraçoğlu – Evolution Art, Mikado Communication
Desen Halıçınarlı's Palas Pandıras Exhibition Starts At Quick Art Space
Desen Halıçınarlı’s “Palas Pandıras” Exhibition Starts at Quick Art Space
Tülin Akkaş's 'eŞİkte' Exhibition The Enchanting Journey Of Truth And Imagination Curator Nuray Özler Yolcu
Tülin Akkaş’s ‘EŞİKTE’ Exhibition: The Enchanting Journey of Truth and Imagination – Curator Nuray Özler Yolcu
Asuman Tuncay’s “an’lar Ii” Exhibition Meets Art Enthusiasts
Asuman Tuncay’s “AN’LAR II” Exhibition Meets Art Enthusiasts
Burak Gülgen The Film Set Is My Living Space Exclusive Interview With Eylül Aşkın
Burak Gülgen: “The film set is my living space” – Exclusive Interview with Eylül Aşkın
“sealed Time Mühürlenmiş Zaman” A Journey Filled With Contemporary Art And Images Of Nature
“Sealed Time – Mühürlenmiş Zaman”: A Journey Filled with Contemporary Art and Images of Nature
The Evolution Of Art Episode 48 – Salih Keleş, Günsu Saraçoğlu – Evrim Art, Mikado Communication
The Evolution of Art Episode 48 – Salih Keleş, Günsu Saraçoğlu – Evrim Art, Mikado Communication
“hell Cehennem” At Alan Kadıköy A Shocking Journey Between Virtual And Reality
“Hell-Cehennem” at Alan Kadıköy: A Shocking Journey Between Virtual and Reality
Tezhip And Digital Artworks Presented For The First Time At The Âdil I Mutlak Exhibition
Tezhip and Digital Artworks Presented for the First Time at the Âdil-i Mutlak Exhibition
Meshru Gallery Opens Its Doors To Gökhan Tüfekçi’s Absurd And Colorful World
MeshRu Gallery Opens Its Doors to Gökhan Tüfekçi’s Absurd and Colorful World
Lilia Hassaine's Riveting Dystopia Public Lives
Lilia Hassaine’s Riveting Dystopia: Public Lives
The Intersection Of Art And History Ahmet Güneştekin’s Lost Alphabet
The Intersection of Art and History: Ahmet Güneştekin’s Lost Alphabet
Art For Animal Rights Charity Exhibition At Kadıköy 8artı1 Gallery
Art for Animal Rights: Charity Exhibition at Kadıköy 8artı1 Gallery
Location And Future Value 2025 Investment Guide Derya Filiz Dalga
Location and Future Value: 2025 Investment Guide – Derya Filiz Dalga
Hakan Küfündür “i Used Radio As A Tool”exclusive Interview With Eylül Aşkın
Hakan Küfündür: “I Used Radio as a Tool”Exclusive Interview with Eylül Aşkın
The Evolution Of Art Episode 47 – Okan Karakaya, Eylül Aşkın – Evolution Art, Mikado Communication
The Evolution of Art Episode 47 – Okan Karakaya, Eylül Aşkın – Evolution Art, Mikado Communication
The Taste Guarantee Of Mutlu Makarna With Masterchef Star Mehmet Yalçınkaya
The Taste Guarantee of Mutlu Makarna with MasterChef Star Mehmet Yalçınkaya
SorduĞu Kadar (acoustic) Meets Listeners With Bîdar's Simplified Arrangement.
“SORDUĞU KADAR (Acoustic)” meets listeners with Bîdar’s simplified arrangement.
Women And Men Religiosity Rate, Quran Translation Reading, Turkey Religiosity Study
Women and men religiosity rate, Quran translation reading, Turkey religiosity study
Türkiye News Portal Logo
Turhapo Logo
Türkiye Haber Portalı Logo