Over Million Google accounts Breached by Gooligan malware

Security researchers over the past few weeks have exposed two different root kits infecting millions of Android-based devices. Malware Gooligan affecting over a million Google accounts with the information stolen from Android Devices has been revealed within last few weeks.

This Gooligan malware is known for targeting the older version devices that run on Jelly Bean (4.1, 4.2, and 4.3), KitKat (4.4), or Lollipop (5.0, 5.1). It gets installed on host devices with regular third-party app stores phishing attacks. After accessing the device, it searches for root permission and gains access to numerous stored accounts. As soon as the malware settles in the device, it starts installing and rating fake apps from Google Play Store.

According to the security researchers, this malware is spreading 13,000 infections over a million devices on daily basis. Adrian Ludwig, Google’s director of Android Security, the company has guaranteed its users that they will be protected from Gush Push malware variants such as Gooligan and has already started cancelling the tokens of the affected users.

Most of the users have been contacted to tackle the issue. Google’s app installation guidelines can be a great help to users for protecting new and older versions of their devices. Also, in order to remain on the safe side users must avoid side loading any applications from websites or third-party app stores.