Khaberni - "Google Play Store", a service by Google, is assumed to be the safest place for downloading Android apps, however, not every app present in the store is reliable, especially when searched for purposes that may be illegal or suspicious.
A recently detailed scam has revealed the extent of fraudulent apps on the store before they were shut down, with 28 apps on "Google Play" achieving over 7.3 million downloads by promising access to other people's call logs, SMS messages, and WhatsApp call history.
Cybersecurity researchers at "ESET" detailed this scam operation in a report published on "WeLiveSecurity" website, where they collectively named these apps "CallPhantom”, according to a report on the site.
Despite the different appearances of the apps, the trick was the same: the user enters a phone number, then pays a fee to unlock what are supposed to be call records, but ultimately receives fake data.
The researchers found that some of the apps were generating random phone numbers and linking them to names and call details already embedded in the code.
Other apps requested users to enter an email address, which was supposed to receive the "retrieved call log". In all cases, "ESET" confirmed that these apps did not request advanced or genuine permissions that would allow them access to the required data.
The irony of this situation is evident; while no one deserves to be scammed, this particular case is based on dubious promises from the beginning. Instead of offering simple features, like wallpapers or enhanced weather tools, these apps claimed access to private contact logs of others.
While some apps used the official payment system on "Google Play", which might allow some victims to request a refund, other apps directed users towards external payment applications or direct credit card data entry forms within the app.
In one case, when a user attempted to exit the app, a misleading alert resembling new email messages appeared, claiming the arrival of call log results, then redirected the user back to the subscription screen.
"ESET" reported these 28 applications to Google on December 16, and all were removed from the "Google Play" store by the time the report was published.
Although downloading apps from outside the main Android store is usually considered more risky, this case serves as a reminder that "Google Play" itself can grant fraudulent apps wide access if they manage to pass the initial screening.
