Fake Covid-19 contract-tracing apps will spy on you: What to do

covid-19 contact tracing apps
(Image credit: Ascannio / Shutterstock.com)

As governments across the world release Covid-19 contact-tracing apps to their citizens in a bid to slow down the spread of the disease, cybercriminals are creating fake versions of these apps.

Security researchers from Anomali Threat Research (ATR) warned yesterday (June 10) that cyber crooks are “distributing fake Android applications themed around official government Covid-19 contact tracing apps”.

The researchers have spotted 12 malicious apps pretending to be legitimate contact-tracing services. In reality, the apps carry malware like Anubis and SpyNote. 

Anubis is a banking Trojan that aims to gain access to online bank accounts, while Spynote monitors user data once a device is infected

“These apps, once installed on a device, are designed to download and install malware to monitor infected devices, and to steal banking credentials and personal data,” warned the ATR researchers. 

“ATR believes that the fake apps are likely being distributed through other apps, third-party stores, and websites, among others," they added. "As of the publication of this research, the fake apps had not been identified as being present in the Google Play Store."

Multiple countries and regions targeted

ATR says the apps are targeting citizens of several countries, including Armenia, India, Brazil, Colombia, Indonesia, Iran, Italy, Kyrgyzstan, Russia and Singapore. 

The report warns that cybercriminals are increasingly taking advantage of the pandemic, saying: “Threat actors continue to imitate official apps to take advantage of the brand recognition and perceived trust of those released by government agencies. 

“The global impact of the Covid-19 pandemic makes the virus a recognizable and potentially fear-inducing name, of which actors will continue to abuse. This research reveals a glimpse into some of the applications threat actors are actively distributing, and there are likely numerous others in the wild that have not yet been detected.”

To avoid falling victim to such scams, make sure to get Android apps only from the official Google Play Store and to install one of the best Android antivirus apps.

Nicholas Fearn is a freelance technology journalist and copywriter from the Welsh valleys. His work has appeared in publications such as the FT, the Independent, the Daily Telegraph, The Next Web, T3, Android Central, Computer Weekly, and many others. He also happens to be a diehard Mariah Carey fan!

Latest in Mobile Apps
Gboard app logo on mobile phone resting on a keyboard
Google Gboard redesign has already angered users — and I can see why
Waze app on iPhone in car
Forget Google Maps — Waze just got a huge upgrade that will help millions of drivers
A photo of the Apple Maps app tile displayed on an iPhone screen
Apple Maps may soon get ads, letting businesses pay to boost visibility
How to delete TikTok
TikTok confirms return to Apple and Google app stores — here’s what we know
How to tour the Super Bowl stadium virtually with Google Maps
Google Maps is adding this new feature for millions of drivers to make your ride safer
Google Maps and Apple Maps showing the new name for the Gulf
Apple Maps follows Google Maps in renaming the Gulf of Mexico to Gulf of America
Latest in News
iOS 19 logo on an iPhone
iOS 19 — all the rumors so far
NYTimes Connections
NYT Connections today hints and answers — Tuesday, March 11 (#639)
An image of a CAPTCHA
Hackers are using reCAPTCHA to trick users into infecting their own PCs with malware — how to stay safe
Google Calendar app on iPhone
Google Calendar is about to get a Gemini AI upgrade, and it makes more sense than you'd think
Gmail logo on iPhone
Gmail just got a huge AI upgrade that will save you a ton of time
Nina Oyama and Kate Box in Deadloch
One of my favorite shows on Prime Video has been totally overlooked — and it's got 100% on Rotten Tomatoes