PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Mobile Threat Monday: Russian Google Play Market Only Sells Malware

Jordan Minor
 & Jordan Minor Principal Writer, Software

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

Russia takes security seriously, and I'm not just talking about state secrets. The fine folks at Kaspersky have been releasing excellent antivirus products from their headquarters in Moscow since 1997. But the Cold War over malware is far from finished in the former Soviet Union. This week's mobile threat tip from Malwarebytes pulls back the Iron Curtain on a malicious Russian Android app pretending to be the Google Play store itself.

From Russia With Hate

Many Russian Android owners do not have access to the Google Play store and other Google Service apps. So they have to download apps from other, less reliable sources. Google Play Market (Android/Trojan.FakePlay.as) lurks in these shadowy alleys and sells itself as an update for the real Google Play store. Without an official alternative to turn to, Russian users are tricked into downloading the Trojan.

The app displays a fake progress bar to mimic an install process, but in reality it runs as a service in the background with no visible icon in the launcher. After it has taken root, the app then requests Device Admin permission and tries to change the phone's unlock password to '12345.' The sad thing is that's probably a stronger password than what many other smartphones owners use.

The fake Google Play Market also monitors SMS messages and can reply to or dismiss messages for premium services. Although the specific premium services are currently unknown, presumably this is how the malware makes money for its creators at the victim's expense. Last year we discussed another, similar Russian-specific mobile threat called Samsapo that texted Cyrillic messages to premium numbers to "ravage Russian wallets."

Staying Safe

Normally this is the part where we say the best way to avoid catching Android malware is to only download apps from the Google Play store, and most of the world should still follow that advice. But fake apps like Google Play Market only proliferate because the Google Play store isn't accessible in Russia. That combined with the massive, complex Android malware industry operating inside the country means Russian Android owners just have to be that much more careful.

Fortunately, anyone can purchase Android security products from trustworthy sources like Kaspersky and Malwarebytes as well as Editors' Choice winners Avast and Bitdefender. Or maybe Russia could just ask Edward Snowden for some security tips before he flees the country. 

 

About Our Expert

Jordan Minor

Jordan Minor

Principal Writer, Software

My PCMag career began in 2013 as an intern. Now, I'm a senior writer, using the skills I acquired at Northwestern University to write about dating apps, meal kits, programming software, website builders, video streaming services, and video games. I was previously a senior editor at Geek.com and have written for The A.V. Club, Kotaku, and Paste Magazine. I'm the author of the gaming history book Video Game of the Year: A Year-by-Year Guide to the Best, Boldest, and Most Bizarre Games from Every Year Since 1977, and the reason everything you know about Street Sharks is a lie.

The Technology I Use

I use the newest Android and iOS smartphones for testing, but I currently use an iPhone 14 as my personal phone. I just hate that we gave up headphone jacks.

I've always favored gaming laptops over desktops. On that note, I have a 16-inch HP Envy with an Intel Core i9-13900H CPU and Nvidia GeForce RTX 4060 GPU. No matter what machine I’m working on, an alarming amount of my personal and professional life revolves around cloud-synced Google Drive files.

For food subscriptions, my household sticks with CookUnity and HelloFresh for meals. Video streaming is a bit more complicated. While there are too many services to list, we're subscribed to most of the major ones. These days, I find myself drawn to HBO Max's movies and shows, as well as Peacock's reality trash.

I've been a lifelong Nintendo fan, and I sincerely believe the Nintendo Switch will go down as one of the best gaming consoles of all time. It has an unbelievable library of new and old games from Nintendo and third-party companies. The handheld/console hybrid approach makes playing games so much more flexible, a legacy that continues with the Nintendo Switch 2 and Valve’s Steam Deck.

Read the latest from Jordan Minor

Read full bio