Gooligan Malware Breaches 1M+ Google Accounts

A resurgent Android malware has already breached more than a million users’ Google accounts—and is infecting an estimated 13,000 devices per day. 

By Tara Seals

The campaign, which Check Point Software dubs Gooligan, roots Android devices and steals the email addresses and authentication tokens stored on them. With this information, attackers can access users’ sensitive data from Gmail, Google Photos, Google Docs, Google Play and G Suite.

It also generates revenues for the criminals by fraudulently installing apps from Google Play and rating them on behalf of the victim. Every day, Gooligan installs at least 30,000 apps on breached devices, or over 2 million apps since the campaign began. And to make things worse, many of the apps are part of the Ghost Push family.

To read the entire article, please click here.