Cybercriminals Using Pokémon Go to Infect Mobile Devices

Photo of author

(Newswire.net — July 21, 2016) — The new release of Pokémon Go is proving to be extremely popular, with millions of people all around the world becoming just a little bit obsessed with this new, modern version of their favorite childhood game which can be played on a smartphone. However, for those in states or countries where the app has not yet been released to Google Play, the option of downloading from an unofficial app store may seem tempting – but is it safe? Online security company Proofpoint have discovered numerous knockoff copies of this popular app which are infected and could put your smartphone’s security at risk when downloaded.

Hacker Alert

It seems that cybercriminals, who are renowned for stopping at nothing to get to personal and confidential data, are using this hugely popular new game to get into mobile devices. Proofpoint detected an Android application package of Pokémon Go which was infected with a particularly nasty software that, once downloaded to your device, will give hackers access to your device remotely and full control over it. The infected version of the popular smartphone game installs a remote access tool (RAT) to your device, known as DroidJack. From here, hackers can then seize full control of your device and have access to any information that you have stored on there, as well as track your movements to harvest personal information.

Consequences

The consequences of downloading an unauthorized Pokémon Go game which has been infected with this software could potentially be dire. Malicious activity could include stealing your online passwords and financial information stored in your phone, silently installing further viruses and even recording audio and video without your knowledge. With remote access to your device, hackers could potentially read your text messages and emails, access instant messaging services, spy on your app use, and even listen in to your private telephone calls. Although versions of the infected game app have not yet been found on app services in the wild, the cybersecurity firm warned that any individual who downloads the Pokémon Go app or any other app from a third party which has been infected with a RAT such as this, could see their device compromised, even if you have antivirus for all your devices.

Why Unauthorized Downloads?

As of now, many people are resorting to downloading the app from unauthorized app stores due to the fact that the official app has not yet been phased out to all parts of the world. The augmented reality game was first made available in New Zealand and Australia, and has since been rolled out to the U.S. However, Nintendo have currently paused releasing the game in other parts of the world due to concerns regarding server overload. Within just twenty-four hours of its initial launch, the company experienced a server crash due to the game’s extreme popularity. 

If you’re in a country where Pokémon Go has not yet been released, the best thing to do is sit tight and wait. Although we’re sure you want to get playing as soon as possible, Nintendo is expected to eventually release the game to further countries where you can download it officially and safely.