This money stealing scam app has been BANNED by Google Play Store! Did you download it? TO ERASE


A money stealing scam app has been downloaded over 10,000 times from the Google Play Store. If you still have this app, you should remove it now!

A particularly malicious banking Trojan application for Android phones has just been exposed. This money theft scam app targeted banking apps, online wallets, insurance apps, crypto wallets and more to steal data and passwords. Once recovered, he would share access with the hackers, who would steal the victim’s money. The scariest part of this online scam is that the app was found on Google Play Store and has been downloaded over 10,000 times by innocent users. It is called the ‘QR Code & Barcode – Scanner’ app and it has since been banned from the Google Play Store. Read on to find out how this Google Play Store banned app worked.

The incident erupted after a report by Cleafy, an online fraud prevention and management company, which pointed out that the Trojan malware released by the application called TeaBot emerged in early 2021. The Trojan was designed to steal “logins and SMS messages” from the victim. The malware was very clever and was created in such a way that it could hide in plain sight.

How this scam app on Google Play Store stole money from users

The QR Code & Barcode – Scanner app itself has been designed to provide certain benefits to the users and hence has become very popular. And, since it worked as advertised, it had generally positive reviews. But although the app looks genuine, it was actually a scam app online. Once downloaded, it would immediately request permission to download a second app called QR Code Scanner: Add-On. This application included several Teabot malware samples.

Once installed, the Trojan would request permission to control the smartphone screen. Once it had it, it extracted sensitive information such as login credentials, SMS messages, and two-factor authentication codes. It also maliciously requested permissions to allow Teabot to record keystrokes giving easy access to more sensitive data.

“Since the dropper app distributed on the official Google Play Store only asks for a few permissions and the rogue app is later downloaded, it is able to get confused with the legitimate apps and it is almost undetectable by common antivirus solutions. “, says the report. noted.

The app used to work from Google Play Store and has apparently evolved over the past couple of years. Previously, the Trojan was distributed via SMS phishing campaigns where users received fake updates to popular applications and once the victim downloaded it, the Trojan was planted. This money-stealing scam app has been removed by Google, but you can still have it on your smartphone.

To find out if you have the application on your smartphone, you can visit this link and confirm. If you have it, be sure to delete it instantly. Also, in the future, never grant permissions to an app that it doesn’t need. Always take a moment to read the requested permissions and if it turns out suspicious, immediately uninstall and report the app.


Comments are closed.