Dangerous Spyware Masquerades as BMI Calculator on Amazon Appstore, Putting Android Users at Risk

Dangerous Spyware Masquerades as BMI Calculator on Amazon Appstore, Putting Android Users at Risk

Android Spyware Discovered on Amazon Appstore Disguised as BMI Calculator

Security researchers at McAfee Labs have uncovered a malicious spyware application on the Amazon Appstore masquerading as a BMI calculator. The app, named ‘BMI CalculationVsn’ and published by ‘PT Visionet Data Internasional,’ has since been removed from the store following McAfee’s alert to Amazon.

Malicious Functionality:
– Screen Recording: The app initiates recording services when users click the ‘Calculate’ button, requesting permissions that could easily be approved without scrutiny
– App Scanning: Performs device-wide scans to identify all installed applications
– SMS Interception: Collects text messages, including sensitive one-time passwords (OTPs) and verification codes

The spyware first appeared on October 8 and underwent several modifications, including icon changes and additional malicious features. While the screen recordings were stored locally and not uploaded to command and control servers, researchers suggest this may indicate the app was still in development.

Security Recommendations:
1. Users who installed the app should remove it immediately and perform a comprehensive device scan
2. Install applications only from verified publishers
3. Carefully review app permissions
4. Maintain active Google Play Protect on Android devices

The incident highlights the importance of vigilance even when downloading from legitimate sources like the Amazon Appstore, which serves as an alternative to Google Play for Android and Amazon Fire device users.

Share This Article