Millions of devices are still vulnerable towards the Ghost Push mobile Trojan that was made public over two years ago. The Trojan was known to infect around 600,000 Android tablets and smartphones at its peak time. According to the researchers, the malware runs a malicious DEX file when installing in the victim’s phone, root the device and start malicious programs at the startup. Display adverts, install unwanted apps and programs and spying on users is also included in the Ghost Push bio data.
Users can be tricked with the notifications pushed in the notification panel to pay for third party services. The Trojan can end up in victim’s phone through third-party apps. While Google checks each and every app rigorously while uploading it to the Play Store but again there are users who install from other sources. Both legitimate and Spoofed versions of apps that do not go through the Play Store check can including the Ghost Push can be present Amazon, WiFi Enhancer, and Memory Booster. A research report mentioned the Ghost push could also be spread through affected links such as pornographic videos and malvertising. Android users who update their phones to Marshmallow and Nougat don’t have to worry as the malware doesn’t affect these versions of android.