According to Human Security, dozens of VPN apps that turn Android devices into residential proxies have appeared in the Google Play store.
All of the identified malicious applications included a Golang library that was responsible for enrolling the device as a proxy node, and they appeared to be linked to Asocks, a residential proxy seller. As part of the operation, dubbed Proxylib by Human Security, at least 28 VPN applications containing the malicious library were submitted to Google Play.
All apps have been removed from the store, but a version of Proxylib was discovered in the LumiApps SDK that can add malicious functionality to any APK.
Read More: VPN Apps on Google Play Turn Android Devices Into Proxies
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.