Australian Android users are warned not to download mobile apps from third party app stores following reports of malware known as ‘Agent Smith’ infecting 25 million Android devices globally.
How it works
Android devices are infected when the user installs an app, often a game app from a third party site, which contains this malicious software (malware).
The ‘Agent Smith’ malware then searches an infected device for other apps it can feed on, replacing them with malicious, cloned versions without the user’s knowledge.
‘Agent Smith’ is capable of replicating mobile apps like WhatsApp, web browser Opera and virtual keyboard SwiftKey.
Through the replicated apps, ‘Agent Smith’ displays fake advertisements that are used by cybercriminals to steal your money or personal information. By impersonating existing apps on a user’s device – and leveraging the permissions a user has granted to the real apps – cybercriminals could also hijack sensitive information like your banking password or other online logins.
How do I stay safe?
If you think you may have downloaded an app containing ‘Agent Smith’, Android users can go to Settings, then click on Apps or Application Manager, scroll to the suspected app and uninstall it. If it can’t be found then remove all recently installed apps.
Never download apps from third party sites or from links in emails, social media, text messages or websites. Use legitimate app stores such as Google Play for Android or Apple’s App Store.
Don’t click on app adverts as they may contain malicious software – and consider installing a reputable ad blocker from a legitimate app store that will stop you seeing most ads.
Keep your devices and apps updated with the latest software whenever updates are available – and set updates to install automatically wherever possible.