Thu Mar 20 09:20:00 UTC 2025: ## Google Play Store Under Fire After Hundreds of Malicious Apps Bypass Security
**London, UK –** Security researchers have exposed a massive campaign deploying hundreds of malicious apps to Android devices via the Google Play Store. While Google claims to have removed the offending applications, the incident highlights significant vulnerabilities in the platform’s security measures.
Security firm Bitdefender uncovered at least 331 malicious apps, boasting over 60 million downloads, many disguised as seemingly harmless utilities such as QR scanners, expense trackers, and even flashlights. These “Vapor” apps, as dubbed by Integral Ad Science (IAS), display persistent, full-screen ads, preventing users from uninstalling them or interacting with their devices. Some apps also attempted to steal user credentials and credit card information through phishing attacks.
While Google initially responded to an earlier report from IAS, stating that all identified apps had been removed, Bitdefender’s subsequent investigation found 15 malicious apps remained on the Play Store even a week after the initial report. Two apps, Dropo and Handset Locator, were specifically flagged as being uploaded on March 4th, 2025. Google has since confirmed that these apps have also been removed.
Despite Google’s assurances that Play Protect automatically disables such apps, security experts warn that users should not solely rely on default Android protection. They advise users to proactively remove any suspicious or unused apps, especially free utilities, and ensure Play Protect remains enabled.
The scale and persistence of this attack raise concerns about the effectiveness of Google Play Store’s security protocols and underscores the need for users to remain vigilant against potentially malicious apps. The incident serves as a stark reminder that even apps downloaded from official app stores can pose significant security risks.
First Piper 