I love the euphemism: "Dr. Web AV, who notified Huawei and helped them remove the identified apps from their store"

which translates to "Caught the chinky spying bastards at it and watched to make sure they removed the identified apps from their store".



A large-scale malware campaign on Huawei's AppGallery has led to approximately 9,300,000 installs of Android trojans masquerading as over 190 different apps.

The trojan is detected by Dr.Web as 'Android.Cynos.7.origin' and is a modified version of the Cynos malware designed to collect sensitive user data.

The discovery and report come from researchers at Dr. Web AV, who notified Huawei and helped them remove the identified apps from their store.


However, those who installed the apps on their devices will still have to remove them from their Android devices manually.


Trojan disguised as game apps


The threat actors hid their malware in Android apps pretending to be simulators, platformers, arcades, RTS strategy, and shooting games for Russian-speaking, Chinese, or international (English) users.

As they all offered the advertised functionality, users were unlikely to remove them if they enjoyed the game.


Over nine million Android devices infected by info-stealing trojan