A new Android Trojan may be targeting your new device. Even more frightening, it was distributed on the Google Play Store. This virus disguises itself as a harmless app related to health, games, fortune telling, and productivity. Although Google has removed these apps from the Play Store, they have reportedly been downloaded by hundreds of thousands of users around the world and may still be lurking around the web.
What is Xamalicious and how does it work?
The Xamalicious Trojan uses a benign app to bypass accessibility features. It then takes over your phone using features that are normally locked down to control the device. Specifically, the Trojan horse scans the device for information that can be used to hack it, such as the operating system, location, contacts, and passwords. It then executes code to hijack the device and retrieve information.
So far, the virus has been attached to 13 apps on Google Play, which have since been removed. When Google removes an app from the store, it is not removed from your device. If you have any of the following apps installed, please remove them immediately.
- Step Keeper: Easy pedometer
- track your sleep
- Essential horoscope for Android
- 3D Skin Editor for PE Minecraft
- logo maker pro
- autoclick repeater
- Count easy calorie calculator
- volume extender
- letter link
- Numerology: Personal horoscope and number predictions
- volume booster
- Astrology Navigator: Daily Horoscopes and Tarot
- universal calculator
Viruses also don’t work on their own. McAfee researchers discovered a link to another app called “Cash Magnet” that can be installed by Xamalicious. The app automatically clicks on ads, installs apps, sends messages, and performs other actions to fraudulently steal money.
Read more: This stealthy Android malware can steal your money and invade your privacy
How to protect yourself from Xamalicious
It is important to note that these apps may be available in third-party app markets or online.
1) Stick to official app stores
First, use official app stores like Google Play Store, Amazon App Store, or Samsung Galaxy Store. Although not 100%, it has all the safeguards in place to detect malware. Google Play Protect is on-device malware protection on Android devices with Google Play Services that protects you from this malware both inside and outside of Play. If you already have one of these apps installed that is known to contain malware, you will already be warned and the app will be automatically uninstalled from your device. If you try to install an app that contains this identified malware, you will receive a warning and the app will be blocked from installing.
However, it’s important to note that Google Play Protect alone may not be enough. Historically, it has not been 100% foolproof in removing all known malware from Android devices. Therefore, we recommend third-party antivirus software to protect you.
2) Install good antivirus software on all your devices
You should always run good antivirus software on all your devices. Antivirus software protects you from clicking potentially malicious links in emails and text messages and from downloading dangerous viruses such as the Xamalicious Trojan. Allow hackers to access your personal information.
Special for CyberGuy readers: my first choice is Total AVand you can get Limited time sale for CyberGuy readers: TotalAV Antivirus Pro package for $19 (80% off) for the first year.
Get my picks for the best antivirus protection products for Windows, Mac, Android, and iOS devices.
Best antivirus protection of 2024
3) Sideloading is a bad idea
This story is also a good reminder of why sideloading is a bad idea. Sideloading refers to downloading an app directly from a website. While useful, you never know what’s lurking in these files.
More information: Beware of these popular Android apps that contain deceptive adware
What should I do if my data is compromised?
If malware has already entered your device, you should take immediate steps to minimize the damage and protect your device. Below are some steps you can take.
change password
Xamalicious can potentially give hackers access to your online accounts and personal and financial information. To prevent this from happening, you should change the passwords for all important accounts as soon as possible. However, do not do this on an infected device as hackers may view your new password.Instead, you should use another deviceChange passwords on your laptop, desktop, etc. Use strong, unique passwords that are difficult to guess or destroy. You can also use a password manager to generate and store passwords securely.
Monitor your account and transactions
You should regularly check your online accounts and transactions for suspicious or fraudulent activity. If you notice anything unusual, please report it to your service provider or authorities as soon as possible. You should also check your credit report and score for signs of identity theft or fraud.
Use identity theft protection
Xamalicious has access to everything on your Android device, including personal and financial information. Hackers can use this information to create fake accounts in your name, access existing accounts, and impersonate you online. This can cause serious damage to your identity and credit score.
To avoid this, you should use an identity theft protection service. These services track personal information, such as household title, social security number (SSN), phone number, and email address, and notify you if they detect suspicious activity. It can also help freeze bank and credit card accounts to prevent them from being used by hackers.
One of the best things about using Identity Guard is that it includes up to identity theft insurance. $1 million to cover losses and legal costs and White Glove Fraud Resolution Team with US-based Case Managers Helps you recover your losses.
Special for CyberGuy readers: My top pick is Identity Guard, where you can save up to 51%.
Read more about my reviews of the best identity theft protection services here.
Best Identity Theft Prevention Services of 2024
Please contact your bank or credit card company
If a hacker obtains your banking or credit card information, they can use it to make purchases or withdrawals without your consent. You should contact your bank or credit card company and let them know the situation. We can help you freeze or cancel your card, dispute fraudulent charges, or issue a new card.
Alert a contact
If a hacker gains access to your email or social media accounts, they could use them to send spam or phishing messages to your contacts. They may also pretend to be you and request money or personal information. You should alert your contacts and warn them not to open or reply to messages from you that seem suspicious or unusual.
Restore your device to factory settings
If you want to make sure your device is completely free of malware and spyware, you can restore your device to factory settings. This will erase all your data and settings and reinstall your original Android version. You should back up your important data before doing this and restore only from trusted sources.
Read more: 7 signs you’ve been hacked
Cart important points
Viruses like Xamalicious aren’t exactly a nuisance, especially considering they circumvent Google’s strict guidelines. That’s why it’s so important to remain vigilant when it comes to app stores. Download apps only from trusted publishers and read reviews.
Are you worried about Xamalicious? What steps are you taking to protect yourself? Let us know in the comments below.
For more security alerts, subscribe to the free Cyberguy Report newsletter here
Answers to CyberGuy frequently asked questions:
Copyright 2024 CyberGuy.com. All rights reserved. Articles and content on CyberGuy.com may contain affiliate links, which earn us a commission on purchases.
🛍️ Use your holiday gift card to:
shopping guide:
Kids | Men | Women | Teens | Pets |
For loved ones:
Cooking | Coffee | Tools | Travel | Wine |
device:
Laptop | Tablet | Printer | Desktop | Monitor | Earphones | Headphones | Kindle | Soundbar | Kindle | Drone |
accessories:
Car | Kitchen | Laptop | Keyboard | Phone | Travel | Stay Comfortable |
Personal gift:
Photo collection | Digital photo frame |
safety
antiviral agent | VPN | Secure email |
You can’t go wrong with these:
gift card