Authored by a Symantec employee

 

Just because an app is in the Google Play Store doesn’t mean that it is a legitimate app. Google is constantly removing fraudulent apps from the Android marketplace, such as fake antivirus, browsers, and games.

Besides Google Play, and other app markets, there are many other ways that fake apps can get onto your Android device. Scammers will try any means necessary to trick you into installing a fake app. Criminals use emails and SMS messages that appear to be from your bank, credit card company or other brands to trick people into downloading applications that will compromise their data. Sometimes fake apps will pose as security updates, and clicking on the links may also lead to your information being stolen.

If you're an Android user and you receive an unexpected SMS, a strange alert or notification, or unusual requests from what may seem to be your bank or other familiar brand, beware: criminals may be trying to rip you off.

What can you do to protect yourself?

Unsolicited texts, emails, or sudden notifications that appear to be from a bank, retailer, or other known institution may not always be what they seem. Use caution with any link delivered to you and always read the message first. Instead of using the link supplied in the message, go directly to the website in question and log into your account the way you would normally. If the message seems particularly worrisome, call the company directly to verify the information before acting online.

Also, only download Android apps from official sources, such as the Google Play Store. Before downloading any app, do some research. How many times the app has been downloaded? A wildly popular app is a telltale sign of a good app. Read app reviews, look at the developer, and do a search online. There could be more information coming from other users who have previously been duped. Cybercriminals may try to fool you with fake reviews that are often short and generic, so be sure to check out any other apps made by the developer. The more apps that developer has created, the higher the chance that the developer is the real deal.

Security or software update notifications can be a bit trickier to decipher. Often users receive a prompt to install an urgent security update. Your best action in this scenario would be to search online to find out information about that update. If there are multiple discussions online about that specific security update, that can confirm if it is genuine.

There are also clear visual things that stick out if you want to identify fake Android apps. Spelling errors, shoddy logos, and unbalanced or poorly formatted interfaces are clues the app may be fake.

Finally, if you want to be completely covered, there are a few options to keep your device safe.

Always remember to think before you click. Even though there may be a sense of urgency to one-click and install, it is better to take the time and remind yourself of all the signs an app may be fake.

An easy protection step everybody should take is to visit your Android settings and make sure you do not allow third-party app downloads from untrusted sites.

Norton Mobile Security App Advisor for the Google Play Store, which is included in Norton Mobile Security provides comprehensive, proactive protection from the threats on today’s mobile Internet landscape. The App Advisor allows users to examine the behaviors of an app before actually downloading it to the device. App Advisor scans apps in the Google Play Store looking for features that can invade privacy, display annoying/intrusive behaviors such as pop up ads or excessive battery usage, and unnecessary data usage. It will also detect if an app contains malware or is malicious in nature.


Disclaimers and references:
Symantec Corporation, the world’s leading cyber security company, allows organizations, governments, and people to secure their most important data wherever it lives. More than 50 million people and families rely on Symantec’s Norton and LifeLock comprehensive digital safety platform to help protect their personal information, devices, home networks, and identities.

© 2017 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, the Checkmark Logo, Norton, Norton by Symantec, LifeLock, and the Lockman Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the United States and other countries. Firefox is a trademark of Mozilla Foundation. Google Chrome is a trademark of Google, Inc. Mac, iPhone and iPad are trademarks of Apple Inc. Microsoft and the Windows logo are trademarks of Microsoft Corporation in the United States and/or other countries. The Android robot is reproduced or modified from work created and shared by Google and used according to terms described in the Creative Commons 3.0 Attribution License. Other names may be trademarks of their respective owners.