Stories
Slash Boxes
Comments

SoylentNews is people

238 Google Play Apps with 440 Million Installs Made Phones Nearly Unusable

posted by martyb on Sunday June 09 2019, @10:05PM   Printer-friendly
from the program's-popularity-provided-no-protection-perniciousness-persevered dept.

upstart writes in with a submission, via IRC, for SoyCow4463:

238 Google Play apps with 440 million installs made phones nearly unusable

If the prevalence of abusive Google Play apps has left you numb, this latest report is for you. Carefully concealed adware installed in Google-approved apps with more than 440 million installations was so aggressive that it rendered mobile devices nearly unusable, researchers from mobile security provider Lookout said Tuesday.

BeiTaAd, as the adware is known, is a plugin that Lookout says it found hidden in emojis keyboard TouchPal and 237 other applications, all of which were published by Shanghai, China-based CooTek. Together, the 238 unique apps had a combined 440 million installs. Once installed, the apps initially behaved normally. Then, after a delay of anywhere between 24 hours and 14 days, the obfuscated BeiTaAd plugin would begin delivering what are known as out-of-app ads. These ads appeared on users' lock screens and triggered audio and video at seemingly random times or even when a phone was asleep.

"My wife is having the exact same issue," one person reported in November in this thread discussing BeiTaAd. "This will bring up random ads in the middle of phone calls, when her alarm clock goes off or anytime she uses any other function on her phone. We are unable to find any other information on this. It is extremely annoying and almost [makes] her phone unusable."

Lookout's post said the developers responsible for the 238 apps went to great lengths to conceal the plugin.

[...] Lookout reported the behavior of BeiTaAd to Google, and the apps responsible were subsequently either removed from Play or updated to remove the abusive plugin. There's no indication that CooTek will be banned or otherwise punished for breaching Play terms of service on such a mass scale and for taking the steps it did to hide the violation. The remaining 237 CooTek apps that embedded the plugin are listed at the end of Lookout's post.

Update: [on Ars Technica] In a statement sent 10 hours after this post went live, a CooTek representative wrote: "The module mentioned in the report was one of the monetization SDK in our previous versions, and it was not intended for adware purposes. Before the report, we already noticed the issue and disabled the advertising functions in the SDK in question several months ago. We further removed the entire module in question in last month."

Original Submission

 
This discussion has been archived. No new comments can be posted.
238 Google Play Apps with 440 Million Installs Made Phones Nearly Unusable | Log In/Create an Account | Top | 20 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Touché) by Anonymous Coward on Monday June 10 2019, @02:59AM

    by Anonymous Coward on Monday June 10 2019, @02:59AM (#853553)

    At the risk of sounding racist: Another perfect example of Chineese crap.

    Another perfect example of Nipper crap.
    Another perfect example of Gook crap.

    There, that's racist.

    Starting Score:    0  points
    Moderation   +3  
       Touché=3, Total=3
    Extra 'Touché' Modifier   0  
    Total Score:   3