Google Play

Over 32,000 downloads of Mandrake spyware-laced apps from Google Play have led to a significant cyber security incident. The sophisticated Mandrake Android spyware, discovered by Kaspersky, employs advanced evasion techniques and obfuscation, allowing attackers to take complete control over infected devices and exfiltrate sensitive user data without detection. Despite being present on the platform since 2022, the spyware remained undetected for over two years, with the most downloaded app, AirFS, garnering over 30,000 downloads alone. The impact of this security lapse has raised concerns within the cybersecurity community about the efficacy of current app marketplace security measures.

Source: https://securityaffairs.com/166342/mobile-2/mandrake-android-spyware-google-play.html

"id": "goo000080424",
"linkid": "google-play",
"type": "Breach",
"date": "7/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"