Recent News - Pokémon GO Craze: ESET Warns of Fake Apps


2016-07-18

All of the fake apps discovered by ESET and detected by ESET Mobile Security - lockscreen app named Pokemon GO Ultimate and scareware apps “Guide & Cheats for Pokemon Go” and “Install Pokemongo” are no longer available on Google Play. They have already been removed from the store at ESET’s recommendation. 
 
Having been available on Google Play for only a short time, the apps only managed downloads numbering in the hundreds. The Install Pokemongo app attracted 10.000 - 50.000 victims, the Guide & Cheats for Pokemon Go reached between 100 – 500 and the most dangerous of them, the Pokemon Go Ultimate reached 500 - 1.000 downloads. 
 
Pokemon Go Ultimate resembles a version of the much hyped game but its true functionality is malicious:  it deliberately locks the screen immediately after startup. In many cases, reboot – the intuitive solution for a frozen screen - is not available because the app overlays all the other apps as well as the system windows. Users must resort to restart their devices device either by pulling out the battery or using Android Device Manager. After reboot, it runs in the background, invisible to the victim, silently clicking on porn advertisements. To get rid of it, the user needs to go to Settings -> Application manager -> PI Network and then uninstall it manually.  
 
“Pokemon Go Ultimate is the first observation on Google Play of lockscreen functionality being successfully used in a fake app. As its ultimate functionality is clicking on porn ads, it’s not truly damaging. But as for its lockscreen functionality, it’d only take adding a ransom message to create the first lockscreen ransomware on Google Play,” explains Lukáš Štefanko, ESET Malware Researcher. 
Along with the Pokemon GO Ultimate app which bears signs of both Screen Locker and Porn Clicker, ESET researchers also found other Pokémon GO related malware on Google Play. Bogus apps named “Guide & Cheats for Pokemon Go” and “Install Pokemongo” on Google Play, belong to the Scareware family. They trick their victims into paying for unnecessary services. Promising to generate Pokecoins, Pokeballs or Lucky Eggs - up to 999.999 each day – they lure victims into subscribing to expensive bogus services. (Such functionality has recently been described in an article published on ESET’s blog, WeLiveSecurity.com). 
 
“Pokémon GO is such an appealing game that despite of all the warnings by security experts, users tend to accept the risks and download anything to catch all the Pokémon. Those who really can’t resist the temptation should at least follow the most basic security rules,” recommends Lukáš Štefanko. 
 
 
Advice for Pokémon GO-hungry users by ESET security experts:
 
  • download only from reputable sources 
  • check user reviews, focusing on negative comments (keep in mind that positive ones may be fabricated) 
  • read the app’s terms and conditions, focus on what permissions they require
  • use a quality mobile security solution to have all your apps scanned


   

About ESET
ESET®, the pioneer of proactive protection and the maker of the award-winning ESET NOD32® technology, is a global provider of security solutions for businesses and consumers. For over 26 years, the Company continues to lead the industry in proactive threat detection. By obtaining the 80th VB100 award in June 2013, ESET NOD32 technology holds the record number of Virus Bulletin "VB100” Awards, and has never missed a single “In-the-Wild” worm or virus since the inception of testing in 1998. In addition, ESET NOD32 technology holds the longest consecutive string of the VB100 awards of any AV vendor. ESET has also received a number of accolades from AV-Comparatives, AV-TEST and other testing organisations and reviews. ESET NOD32® Antivirus, ESET Smart Security®, ESET Cyber Security® (solution for Mac), ESET® Mobile Security and IT Security for Business are trusted by millions of global users and are among the most recommended security solutions in the world.

ESET recently updated its two-factor authentication (2FA) application, adding a secure validation to weak and static user passwords. This updated version of ESET’s 2FA application provides flexibility and deeper integration of 2FA into bespoke applications, making it the best cost-effective solutions for SMBs everywhere.

The Company has global headquarters in Bratislava (Slovakia), with regional distribution centers in San Diego (U.S.), Buenos Aires (Argentina), and Singapore; with offices in Jena (Germany), Prague (Czech Republic) and Sao Paulo (Brazil). ESET has malware research centers in Bratislava, San Diego, Buenos Aires, Singapore, Prague, Košice (Slovakia), Krakow (Poland), Montreal (Canada), Moscow (Russia) and an extensive partner network for more than 180 countries. For more information visit http://eset.version-2.sg/ or follow us on Facebook.

 

About Version 2 Limited
Version 2 Limited is one of the most dynamic IT companies in Asia. Headquartered in Hong Kong, the Company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 Limited offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which includes Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Version 2 Limited.
For more information, please visit www.version-2.com.sg or call (65) 6296-4268.

 

Previous News Next News

Return to the previous page