Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Survey recaps well-known cybersecurity hurdles for Operational Technol...
AI model o3 defies shutdown commands autonomously, with code tampering
ATxEnterprise 2025 Boosts Global Participation, Reinforces Singapore&#...
Will your organization’s defenses be breached due to your suppliers’ w...
Ransonware attack cripples computational software at the worst possibl...
LOGIN REGISTER
CybersecAsia
  • Conference 2025
  • Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features, Newsletter
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
    • Featured

      Navigating blockchain adoption amid rising security challenges

      Navigating blockchain adoption amid rising security challenges

      Wednesday, May 14, 2025, 12:32 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2024
  • Directory
  • E-Learning

Select Page

LOGIN REGISTER
  • Conference 2025
  • Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features, Newsletter
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
    • Featured

      Navigating blockchain adoption amid rising security challenges

      Navigating blockchain adoption amid rising security challenges

      Wednesday, May 14, 2025, 12:32 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2024
  • Directory
  • E-Learning
News

What? Yet another malware debacle in the Android official app store?

By CybersecAsia editors | Monday, March 24, 2025, 5:57 PM Asia/Singapore

What? Yet another malware debacle in the Android official app store?

In yet another debacle from a supposedly safe official app store, over 300 malicious apps have slipped through

A large-scale cyber threat involving over 300 harmful Android applications that have collectively amassed 60 million downloads on Google Play has been disclosed by threat researchers.

The deceptive apps, classified under the name “Vapor”, were designed to either bombard users with intrusive ads or steal sensitive information, including login credentials and credit card details.

The campaign was first identified by IAS Threat Lab, which had initially reported 180 malicious apps generating millions of fraudulent ad interactions daily. A follow-up study by Bitdefender had later expanded the count to 331 apps, with infections particularly widespread in Brazil, the US, Mexico, Turkey, and South Korea.

Although these apps have since been removed from the hackers’ playground, Google Play, security experts warn that the perpetrators may return with new applications, having already demonstrated their ability to bypass Google’s screening process.

How Vapor apps operated

These apps posed as everyday utilities, such as fitness trackers, note-taking apps, battery optimizers, and QR scanners. Upon initial submission, they appeared legitimate, successfully passing Google’s security reviews. However, once installed, the apps downloaded hidden malware from external servers, enabling harmful functionality post-installation.

Some of the most popular fraudulent apps included:

  • AquaTracker, ClickSave Downloader, Scan Hawk, Water Time Tracker – each with over 1m downloads
  • BeatWatch – 500,000 downloads
  • TranslateScan, Handset Locator – smaller but still concerning download numbers

To evade detection, developers spread these apps across multiple accounts, ensuring that the removal of one would not disrupt the entire operation.

Hidden threats and user impact

Once installed, these apps concealed their icons, making them difficult to locate and uninstall. Some even disguised themselves as Android’s system modules. These apps ran in the background, launching deceptive ads that covered the entire screen while disabling navigation buttons, leaving users unable to exit.

In addition to ad fraud, several of these apps deployed fake login screens for popular apps, tricking users into providing their credentials. Others attempted to steal credit card details under false pretenses.

Google has since removed all Vapor apps and assured users that Play Protect remains active by default to detect and prevent similar threats in the future.

Share:

PreviousExpect to see more computers with firmware protected by post-quantum cryptography soon
NextSurvey finds financial professionals expecting more cyber risks in 2025

Related Posts

How have hybrid- and remote-working trends impacted mobile cybersecurity?

How have hybrid- and remote-working trends impacted mobile cybersecurity?

Wednesday, August 3, 2022

Stronger regional collaborations needed for higher cybersecurity standards

Stronger regional collaborations needed for higher cybersecurity standards

Wednesday, July 24, 2019

Five major cyber threats are being targeted at SMEs next year

Five major cyber threats are being targeted at SMEs next year

Thursday, December 15, 2022

The 5 elements of Sun Tzu’s Art of digital transformation in S E Asia

The 5 elements of Sun Tzu’s Art of digital transformation in S E Asia

Friday, September 10, 2021

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    With only a small IT team, the digital transformation has united operations across 30 locations, …Read more
  • Automating border control and security with facial recognition technology

    Automating border control and security with facial recognition technology

    Indonesia Immigration & Seaport Authorities enhances security and speeds up border control queues at Batam …Read more
  • Securing wealth advisory services without unnecessary friction: Endowus

    Securing wealth advisory services without unnecessary friction: Endowus

    The wealth advisory platform demonstrates its non-negotiable commitment to a robust security posture through partnering …Read more
  • LifeTech group sets up next-gen security operations center in Malaysia

    LifeTech group sets up next-gen security operations center in Malaysia

    By partnering with a unified cybersecurity platform, the firm will be offering cost-effective advanced SOC …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.