Browse archive

Latest news

Fighting cybercrime is on the right track

Google set to upgrade its SSL certs

IT security pros have trouble communicating with executives

Zeus variants are back with a vengeance

Facebook phishers target Fan Pages owners

Killer apps: The performance of networked applications

Is it time to professionalize information security?

Google researcher reveals another Windows 0-day

Twitter finally offers 2-factor authentication

DHS employees' info possibly compromised due to system flaw

Teens are into online sharing, but are also more privacy-aware

The dangers of downloading software from unofficial sites

Microsoft decrypts Skype comms to detect malicious links

Review: Logging and Log Management

Hacking charge stations for electric cars

Beware of fake Candy Crush apps on Google Play

Posted on 19.03.2013

Whenever a mobile game becomes hugely popular, it also becomes a great way for scammers and malware peddlers to lure users into unknowingly installing malicious apps on their devices.

The latest of these games is Candy Crush, a puzzle game available through the Apple Store, the Google Play Store, and Facebook for free.

According to Trend Micro researchers, there are number of fake Candy Crush apps being offered on the aforementioned online marketplaces, and their contain code either for the Leadbolt or the Airpush ad network.

"While not inherently malicious, adware can be abused by cybercriminals for their own gains. Adware not only uses aggressive advertising tactics such as persistent notifications, but also collects information about the user," they pointed out.

As always, users are advised to be careful when downloading new apps by checking the contents of the app page such as the name of the developer, user comments, the app description, and gauging its legitimacy. In addition to all this, once an app is downloaded and run, it's always best to pass on the ones that ask permissions that can be misused to steal money or crucial information.