It was recently revealed that Google has booted an Android app with over 100,000 downloads from its Google Play Store. The app was found to be sending texts with disconcerting contents to a hidden developer server.
Google acted quickly in the wake of the discovery and removed the “Metasploit” Andropilot product from its app store. This product is developed and distributed by a group of hackers called “Metasploit”, and is primarily used for ‘pen-testing’ or finding exploitable vulnerabilities on web services and products.
Google stated in a statement that “This app violated our policies, and as soon as we became aware of it, we removed it from the Play Store. We apologize for any harm this may have caused.”
The app is not only guilty of forwarding texts to the developer server, but its main function is to give hackers general remote access control to a smartphone or tablet. This identity of this hidden server was not made public by Google and it is unclear who is behind it, but it is likely used to gain access to devices without the owner’s knowledge.
In addition, the app collects basic information from users such as their device model and device ID, putting their digital security and privacy at further risk.
It’s important that users stay vigilant when downloading and using apps, and be aware of the potential risks. We must ensure that any app we are using is reputable and secure to protect our data and devices. It is also essential to read through the app’s description and check reviews before downloading it to our devices. If something doesn’t seem right, it is recommended to immediately uninstall it from our device and report it to Google.
It’s good to see that Google is taking responsibility for their store, and are continuously improving their security measures to prevent similar incidents from occurring.
At this point, all we can do is be aware and vigilant when it comes to downloading and using apps, and take extra precaution when providing any personal information about ourselves or our devices.
