Google has removed 331 applications from the Play Store for allegedly bypassing Android 13 OS security systems and compromising user data. Reports indicate that these apps, collectively downloaded over 60 million times, were involved in unauthorized data collection and phishing activities.
According to cybersecurity researchers at IAS Threat Lab, the removed applications were part of a data scam known as “Vapor,” which involved stealing personal user information and accessing credit card details through phishing attacks. Additionally, the apps generated approximately 200 million fake promotion requests.
NOT 'APPY Urgent warning to mobile users after 330 apps secretly raiding bank accounts are exposed – check your phone now https://t.co/kdaHay0HmW #cybersecurity #infosec #cyberattacks #CSO #CISO #BHUSA #cybercrime pic.twitter.com/CJRoa7bJpc
— Evan Kirstel #B2B #TechFluencer (@EvanKirstel) March 20, 2025
The affected applications were disguised as health trackers, QR scanners, and wallpaper apps, making them difficult to detect. These apps reportedly had the ability to override user privacy settings and grant permissions without user consent.
Google has advised Android 13 OS users to update their devices to the latest version to enhance security. The company has also urged users to exercise caution while downloading new applications, citing the increasing risks posed by evolving cyber threats.
READ MORE: Telangana High Court Issues Notices to CBI in YS Viveka Murder Case