Google has removed more than 1,700 apps infected with Bread financial-fraud malware from its Google Play store over the past three years.
In a blog post published yesterday, Google share details about its fight against the Bread group, calling it one of the most persistent threats the company has faced.
Google first started tracking the criminal group in early 2017. And, since then, operators of the malicious group have been infecting apps with new versions of their malware on a weekly basis.
Last year alone, Aleksejs Kuprins found 24 apps infected with the Bread (Joker) malware that slipped into the Play Store. A month later, Pradeo Labs found another Bread (Joker)-infected app. Trend Micro also found 29 Bread-infected apps a few days later. A few days after that, K7 Security found four other apps that slipped on the Play Store as well. Then Dr.Web found eight other apps, and Kasperksy found four more.
In addition, the Bread group tried to overwhelm Google’s security scanning with the sheer volume of infected apps. “At peak times of activity, we have seen up to 23 different apps from this family submitted to Play in one day.”
While Google admitted that the group exploited gaps in its Play Store defenses, most of the time, the tech giant was able to stop the malware from reaching its users.
To read more about Google’s fight with the Bread group, click here.