An Android Malware Masquerades as a Google+ App

Posted Aug 15, 2011

A new Android malware called ANDROIDOS_NICISPY.C is installing itself on users phones as an app called “Google++” complete with the G+ logo. TechCrunch reports that the malware isn’t currently a widespread problem, and is installed when users visit a malicious site, not from the Android Market. The malware records personal data like texts and calls and sends it to a remote server.

NICISPY.C even has the ability to answer calls when the screen is turned off, at which point “the app puts the phone in silent mode and hides the dial pad. And when the phone call is connected, the screen goes blank.” Users whose Android phones have been infected by the malware can get rid of it by uninstalling the Google++ app it hides behind.