Chinese malware called HummingBad has infected at least 10 million Android devices, according to security researchers.
Cybersecurity software maker Check Point released an analysis about the malware, which the firm has tracked since it was discovered in February. HummingBad gives cybercriminals administrative-level access to infected Android devices. It downloads apps and clicks adds without users’ knowledge, generating fraudulent advertising revenue of up to $300,000 per month, CNET reports.
The majority of the malware’s victims are in China and India, each with over 1 million cases. The U.S. is home to roughly a quarter of a million infected devices, according to the report.
Check Point says a team of developers at Yingmob, a multimillion-dollar advertising analytics agency based in Beijing, is behind HummingBad. The group can also sell access to and give away information from infected phones, the security firm says.
“We’ve long been aware of this evolving family of malware and we’re constantly improving our systems that detect it,” a Google spokesperson told TIME. “We actively block installations of infected apps to keep users and their information safe.”
According to Check Point, Apple devices have also been hit by similar malware, including some attacks from Yingmob using an iOS malware called Yispecter.
- Here’s How Effective the Original Vaccines Are Against Omicron
- The Promise—And Possible Perils—of Editing What We Say Online
- How Trump Survived Decades of Legal Trouble: Deny, Deflect, Delay, and Don't Put Anything in Writing
- Flint Is Still Shaken by its Water Crisis—and Residents Are Experiencing Long-Term Mental-Health Issues
- A Beer Shortage Is Brewing. A Volcano Is Partly to Blame
- How Fasting Can—and Can't—Improve Gut Health
- Cities Keep Enforcing Curfews for Teens, Despite Evidence They Don't Stop Crime
- Joe Manchin’s Red Tape Reform Could Supercharge Renewable Energy in the U.S.
- Column: We Should Talk More About What a Brilliant Actor Marilyn Monroe Was