Overview
- Security researchers and Forbes report that malicious apps posing as VPN services are being pushed through app stores, websites, and large advertising campaigns.
- Google security VP Laurie Richardson warns that attackers can access sensitive data including browser histories, private messages, financial information, and cryptocurrency wallet details.
- After installation, the malware can enable account takeovers or encrypt data to extort victims.
- Coverage links the targeting to users trying to bypass age verification on adult sites in the UK and Italy, with minors highlighted as especially vulnerable.
- Google advises relying on vetted VPN providers, enabling Play Protect, avoiding installs from ads or email attachments, and scrutinizing app permissions.