APKPure, one of the largest alternative app stores outside of the Google Play Store, was infected with malware that let the attackers to distribute Trojans to Android devices.
The APKPure client version 3.17.18 was tampered to trick unsuspecting users into downloading and installing malicious applications linked to the malicious code built into the APKpure app.
The findings were reported by researchers from Doctor Web and Kaspersky. According to Doctor Web, the trojan belongs to the dangerous Android.Triada malware family capable of downloading, installing and uninstalling software without users’ permission.
According to Kaspersky, the APKPure version 3.17.18 was tweaked to incorporate an advertisement SDK that acts as a Trojan dropper designed to deliver other malware to a victim’s device.
This component could show ads on the lock screen; open browser tabs; collect information about the device; and download other malware.
In response to the findings, APKPure has released a new version of the app (version 3.17.19) on April 9 that removes the malicious component. The developers stated that they have fixed the potential security problem, making APKPure safer to use.