XcodeGhost malware had made its way to the official Google Play app store lending trojans and adware to the consumer's mobile.
The malicious Brain Test app avoided the detection by Bouncer – Google’s technology which is supposed to stop malicious apps from entering the store was downloaded between 200,000 and 1 million times.
There are various bogus versions of popular games such as “Plants vs Zombies 2”, “Traffic Race” and “Temple Run 2 Zoombie” that can make it possible for criminals to slip their malware past such checks.
Source: https://grahamcluley.com/video-malware-hits-google-play-android-app-store/
TPRM report: https://scoringcyber.rankiteo.com/company/google-play
"id": "goo104223422",
"linkid": "google-play",
"type": "Ransomware",
"date": "09/2015",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'customers_affected': 'Between 200,000 and 1 million',
'industry': 'Technology',
'location': 'Global',
'name': 'Google',
'type': 'Company'}],
'attack_vector': 'Malicious Apps',
'description': 'XcodeGhost malware had made its way to the official Google '
"Play app store lending trojans and adware to the consumer's "
'mobile. The malicious Brain Test app avoided the detection by '
'Bouncer – Google’s technology which is supposed to stop '
'malicious apps from entering the store was downloaded between '
'200,000 and 1 million times. There are various bogus versions '
'of popular games such as “Plants vs Zombies 2”, “Traffic '
'Race” and “Temple Run 2 Zoombie” that can make it possible '
'for criminals to slip their malware past such checks.',
'impact': {'systems_affected': 'Mobile Devices'},
'initial_access_broker': {'entry_point': 'Google Play Store'},
'motivation': 'Malicious Intent',
'threat_actor': 'Unknown',
'title': 'XcodeGhost Malware on Google Play Store',
'type': 'Malware',
'vulnerability_exploited': 'Google Play Store Security'}