Malware on Google Play steals Viber photos and videos

Malware on Google Play steals Viber photos and videos

Symantec reports:

Symantec has discovered an app on Google Play that steals photos and videos from the popular social media app Viber. Beaver Gang Counter masquerades as a score keeping app for a popular card game but secretly searches for media files related to the Viber app and sends them to a remote server.

It’s easy to imagine who the personal photos and videos stolen by this malware could be used by online criminals for the purposes of blackmail, stalking, fraud, identity theft or just good old-fashioned voyeurism.

Sign up to our free newsletter.
Security news, advice, and tips.

Interestingly, it seems that Beaver Gang Counter waited for instructions from a remote command and control (C&C) server before scooping up personal photos and videos. This functionality appears to have helped the malware waltz past the Google Play store’s vetting process.

Malware on the Android platform is a growing problem, but it’s even worse when it makes its way into the official Android app store.

Symantec says that Google has now removed the offending app and developer from Google Play, but one wonders how long it will be before someone else attempts something similar.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

One comment on “Malware on Google Play steals Viber photos and videos”

  1. David L

    Well, this is the latest "auto-rooting" malware to make its way past google playstore defenses.
    https://blog.lookout.com/blog/2016/06/27/leveldropper/
    And it's not going to get any better, as the bad guys keep improving the ways they can hide & execute. The only reason people aren't suing google, is they typically blame the device manufacture, and or are just not knowledgeable enough to know who to blame. Many times, the store they got the device from, or the carrier will swap out the phone with a refurbished one.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.