Despite Google’s surveillance efforts, hackers still manage to rot the Play Store with malicious apps. Security researchers at Check Point have just found 56 seemingly legitimate applications, which in reality were advertising fraud. Half of this software was intended for children, the rest consisted of utility apps. In total, these apps have been downloaded a million times worldwide.
Technically, this fraud relies on Android’s MotionEvent programming interface to simulate user gestures and create clicks on banners or advertising links. The malicious code, dubbed “Tekya”, has also been obscured so as not to alert Google’s control devices. And obviously, it's not very complicated.
Since then, these 56 apps have been ejected from the Play Store. A full list is available on the website. Check Point.