Did you unwittingly break any laws?
Let us put your biggest concern at ease by stressing that you can’t be prosecuted or accused of anything illegal that may have been done with the help of your phone after you installed one of the 28 apps infected with this new type of malware.
To its credit, the search giant reacted to these hair-raising revelations in the only acceptable way we can think of, removing all the dangerous new apps from its Play Store while also disabling them on devices where they’re already installed. That is, if you have the Google Play Protect functionality enabled, which you absolutely should at all times.
Before listing all the apps you need to delete from your phone if you have Play Protect switched off or if for some reason the tool fails to do its job, it’s important to highlight that a few of these titles have actually returned to Google Play without any trace of malicious code in them. Does that make them safe to use? Theoretically, yes, but we can totally understand if you’ve developed trust issues and would rather install alternatives with a clean security record.
Get rid of the following apps now!
- Lite VPN
- Anims Keyboard
- Blaze Stride
- Byte Blade VPN
- Android 12 Launcher (by CaptainDroid)
- Android 13 Launcher (by CaptainDroid)
- Android 14 Launcher (by CaptainDroid)
- CaptainDroid Feeds
- Free Old Classic Movies (by CaptainDroid)
- Phone Comparison (by CaptainDroid)
- Fast Fly VPN
- Fast Fox VPN
- Fast Line VPN
- Funny Char Ging Animation
- Limo Edges
- Oko VPN
- Phone App Launcher
- Quick Flow VPN
- Sample VPN
- Secure Thunder
- Shine Secure
- Speed Surf
- Swift Shield VPN
- Turbo Track VPN
- Turbo Tunnel VPN
- Yellow Flash VPN
- VPN Ultra
- Run VPN
As you can easily notice, many of these apps have one key thing in common – free VPN (Virtual Private Network) service. That sounds like a very compelling proposition when some of the best premium VPNs out there are available for anywhere between $3 and $10 a month, so it’s definitely easy to understand how millions and millions of people were duped into joining the Proxylib shenanigans.
This was the first app of the malicious batch discovered back in June 2023, although it’s (theoretically) safe to use if you download it now.
These essentially routed traffic from one device through another to conduct advertising fraud and other malicious activities known as password spraying and credential stuffing attacks. Hackers used IP addresses without user approval or notification to hide the true origin of their attacks and make ad money with the help of bots and your very own phones.
That’s just the tip of the iceberg, though, and alas, we can’t really know exactly what cybercrimes your IPs were involved in, for how long, and how much online and personal harm they may have caused between June 2023 and February 2024 and even before the date at which the first Proxylib-carrying app was discovered.