Even though Google scanning every app available on Play Store thoroughly, still there are few bad apps which misuse sensitive information of the users.
Symantec, the maker of Norton Antivirus, found a dangerous app named “HTML Source Code Viewer” on the Google Play Store through its Mobile Insight scanning.
The app developed by Sunuba Gaming poses as the development tool for the developers. But once it installed on our phone, it silently transfers the files stored on our phone to the remote servers.
It transfers all the files from /DCIM/Camera and /DCIM/100LGDSC folders to the remote web server located at proqnoz.info website. When Symantec explored the server, it found thousands of personal files from the Android users around the world.
Once the data collected from the user’s phones, they could be used to make ransomware attacks, blackmailing or other types of threats.
The suspected web server is maintained by Azerbaijan, and the app installed on approx. 1000 to 5000 Android phones through the Google Play Store.
Symantec submitted it’s scanning reports to Google and immediately the application was pulled down from the Google Play Store. But this is the latest example, how bad app steal our data unknowingly.