Never, ever download apps outside of authorised app stores. Never. Attackers are using Gooligan malware as a launch pad for rogue Android apps aimed at stealing users’ data. According to security researchers, the best way to avoid being stung is by steering clear of dodgy app stores and sticking religiously to Google Play Store. There, at least, a number of controls are in place to detect fake or hostile apps.
Apps have become an increasingly appealing and lucrative target for hackers (as demonstrated by the sheer number of stories about malware-invested apps on this blog), due to the decline in desktop browsing, with more people now downloading via their mobile devices. The process of subjecting apps to thorough security vetting can prove prohibitively expensive for third party app vendors, giving malicious apps the chance to slip through the net.