Wuta Camera, Max Browser, WhatsApp Mods, Spotify Mods, and Minecraft Mods were found to be infected with a Necro Sideloader. All the apps are shown to contain CoralSDK. If you downloaded any of this remove the apps and wipe your phone.

  • enkers
    link
    fedilink
    English
    arrow-up
    42
    arrow-down
    22
    ·
    2 months ago

    From the picture, yes, Google Play is indeed malware. F-Droid is the way.

          • Kevin@lemmy.ca
            link
            fedilink
            English
            arrow-up
            19
            ·
            2 months ago

            Because they only offer open source apps they build themselves

          • enkers
            link
            fedilink
            English
            arrow-up
            8
            ·
            edit-2
            2 months ago

            FOSS apps are generally more secure due to auditability of the source. Many eyes, and all that. Although I’m sure there’s also reduced interest from attackers on smaller platforms.

            Also, malware devs would have the additional constraint of having to either open source their malware, which they probably don’t want to do, or sideload their payload, which is more work for them.