Thursday, May 15, 2025
Follow us On Linkedin
HomeMalwareMalicious Code in Kids Game Apps on Google Play Pushing Porn Ads...

Malicious Code in Kids Game Apps on Google Play Pushing Porn Ads – More than 60 Game Apps Infected

Malware

Published on

By Gurubaran
Malicious Code in Kids Game Apps on Google Play Pushing Porn Ads – More than 60 Game Apps Infected

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

Cybercriminals started focussing on game apps which are used by children to install fake apps, registering premium services and porn ads.

Security researchers from checkpoint identified the malicious code dubbed “AdultSwine” hides into more than 60 game apps and they are downloaded between 3 million and 7 million times.

How does it Displaying  Porn Ads

The malicious apps targetting victims by displaying inappropriate pornographic ads, tricking to install fake security apps and premium subscriptions.

- Advertisement - Google News

Once the malicious app is installed on the device, it waits for a boot to occur or for a user to unlock his screen, upon which it initiates its malicious activity, researchers said.

Also Read: A Man Used Fruitfly macOS Malware over 13 Years For Spying Thousand of Computers

Functions of Malicious Code

Displaying pornographic ads

Once the malicious app triggered it contacts the C&C server to report installation and provides the device details and it determines which ads to be displayed on which apps.

Then it verifies what are the apps running on the device, once all the conditions satisfied it will start showing inappropriate apps.

Tricking users to install security apps

It uses to scare use by displaying that your device “infected with a virus” and shows notification “Remove Virus Now” posing a fake virus remover app from the google play store. Even after Google play, crooks find some advanced sophisticated methods to add malicious apps to play store.

Forcing to register For Premium Services

Another technique is forcing users to register for fraudulent premium services charging victims credit account, it initially displays a popup add and attempts to convince the user to register for premium service.

It tricks “that user deserving to win an iPhone by answering short questions” and get the number from users and the ad itself register for premium services.

Common Defences and Mitigations

Researchers from Checkpoint notified to google and the affected apps removed now.

  • Give careful consideration to the permission asked for by applications.
  • Download applications from trusted sources.
  • Stay up with the latest version.
  • Encrypt your devices.
  • Make frequent backups of important data.
  • Install anti-malware on their devices.
  • Stay strict with CIA Cycle.
Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

cyber security

Critical BitLocker Flaw Exploited in Minutes: Bitpixie Vulnerability Proof of Concept Unveiled

Security researchers have demonstrated a non-invasive method to bypass Microsoft BitLocker encryption on Windows...
Chrome

Google Chrome Zero-Day Vulnerability (CVE-2025-4664) Actively Exploited in The Wild

Google has rolled out a fresh Stable Channel update for the Chrome browser across...
cyber security

Threat Actors Leverage Weaponized HTML Files to Deliver Horabot Malware

A recent discovery by FortiGuard Labs has unveiled a cunning phishing campaign orchestrated by...
Cyber Attack

TA406 Hackers Target Government Entities to Steal Login Credentials

The North Korean state-sponsored threat actor TA406, also tracked as Opal Sleet and Konni,...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

Register Now

More like this

cyber security

Threat Actors Leverage Weaponized HTML Files to Deliver Horabot Malware

A recent discovery by FortiGuard Labs has unveiled a cunning phishing campaign orchestrated by...
Browser

Katz Stealer Malware Hits 78+ Chromium and Gecko-Based Browsers

Newly disclosed information-stealing malware dubbed Katz Stealer has emerged as a significant threat to...
cyber security

Hackers Weaponize KeePass Password Manager to Spread Malware and Steal Passwords

Threat actors have successfully exploited the widely-used open-source password manager, KeePass, to spread malware...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved