1m Google account are infected by Gooligan malware: here’s what to do

The year is about to finish but among the very most potentially harmful Android malware has started to take flight.

The year is about to finish but among the very most potentially harmful Android malware has started to take flight. The malware attacks may have been in operation and contain installed 30,000 infected programs per day, compromising 13,000 apparatus daily, and placing more than 1 million Google accounts in danger of being hijacked and their info stolen. 

The storyline of a Gooligan infection begins nearly as some other successful malware infection. An unsuspecting user, who should probably know better by now, installs or gets duped into installing a Gooligan- laced program from the site or a third party app store. Said program installs a rootkit to gain complete access to a device. To be able to fund its campaign, the malware net income to install more programs from Google Play Store if successful.

Gooligan is unique in the way in which it finances its operations along with its dire reach. It isn’t merely users that the Gooligan malware deceives. Even legit advertising servers and systems are likewise fooled. Gooligan tries to mimics ordinary user operations to exploit on advertising to be able to receive some cash or install sponsored apps. It even leaves reviews to ensure it seems more legit (and bring in extra too).

That, nevertheless, is just the tip of the iceberg. Gooligan can gain access to the Google account authentication token linked to the device once a device has been rooted. That token can then be used to obtain other Google services, to the user’s info, to get like Docs, Drive, and Gmail. This is one situation where even two-step authentication can’t shield you, as the token system bypasses all that since it makes the user, truly the hacker, seem like they’re already logged in.

The malware effort has been found and reported by Check Point and contains reached Google’s ears. Google director for Android security Adrian Ludwig promised to work with Check Point to plug this enormous hole up. To date, however, actions or no formal statement was made. Gooligan can infect Android variant 4 running to 5, that is, from Jelly Bean to Lollipop, and uses rootkits like VROOT and TowelRoot.

In the meantime, there are several steps you can take to ensure that your device and Google account stays safe.

• DO NOT install programs from third-party stores (unless you are 200% certain they have their very own screening procedure). More importantly, DO NOT merely tap on links that promise to download free APKs for programs. And in the event that you see a funny download of a APK, don't install it and delete it immediately.

If you Google account has been compromised, • Check. Check Point has provided a handy web page that only asks for your e-mail address to check.

You might have almost no recourse if you are sadly one of the 1 million and still growing undermined users:

• Alter your account password instantly. And while it may well not really help in this particular instance, now might be a great time to enable two-factor authentication too.

Check Point has supplied a quite long set of fake apps infected by Gooligan. All these are largely apps which have been downloaded from other sources, however do check if you've got them installed also.

Perfect Cleaner

• Demo

• WiFi Enhancer

• Snake

• gla.pev.zvh

• Html5 Games

• Demm

• memory booster

• แข่งรถสุดโหด

• StopWatch

• Clear

• ballSmove_004

• Flashlight Free

• memory booste

• Touch Beauty

• Demoad

• Small Blue Point

• Battery Monitor

• 清理大师

• UC Mini

• Shadow Crush

• Sex Photo

• 小白点

• tub.ajy.ics

• Hip Good

• Memory Booster

• phone booster

• SettingService

• Wifi Master

• Fruit Slots

• System Booster

• Dircet Browser


• Puzzle Bubble-Pet Paradise


• Light Browser

• Clean Master

• YouTube Downloader

• KXService

• Best Wallpapers

• Smart Touch

• Light Advanced

• SmartFolder

• youtubeplayer

• Beautiful Alarm

• PronClub

• Detecting instrument

• Calculator

• GPS Speed

• Fast Cleaner

• Blue Point

• CakeSweety

• Pedometer

• Compass Lite

• Fingerprint unlock

• PornClub

• com.browser.provider

• Assistive Touch

• Sex Cademy

• OneKeyLock

• Wifi Speed Pro

• Minibooster

• com.so.itouch

• com.fabullacop.loudcallernameringtone

• Kiss Browser

• Weather

• Chrono Marker

• Slots Mania

• Multifunction Flashlight

• So Hot

• Google

• HotH5Games

• Swamm Browser

• Billiards

• TcashDemo

• Sexy hot wallpaper

• Wifi Accelerate

• Simple Calculator

• Daily Racing

• Talking Tom 3

• com.example.ddeo

• Test

• Hot Photo

• QPlay

• Virtual

• Music Cloud