Google has removed several Android apps from the Play Store after security company Check Point uncovered an adware campaign, GhostAd, affecting millions.
Security Breach and App Removal
GhostAd was a large-scale adware operation. It used Android apps posing as utilities and emoji editors. These apps ran a persistent advertising engine, even when closed, draining battery and mobile data. At its worst, GhostAd comprised at least 15 apps, with some achieving top rankings, like number two in the Top Free Tools category on Google Play.
Implications for Users and Developers
Google's actions came after users reported issues like persistent pop-up ads and disappearing app icons. The apps slowed devices, affecting responsiveness. Despite removal from the Play Store, installed apps remain on users' devices, necessitating manual checks for suspicious apps. Check Point highlighted that this incident demonstrates how genuine SDKs and ad tools can be misused to create difficult-to-detect adware.
