Fleeceware apps installed by over 600m Play Store users

News
By published

Signing up for an Android app's trial period could cost you

Google Play Store
(Image credit: Shutterstock)

A new set of “fleeceware” apps have been discovered that appear to have been downloaded and installed by over 600m Android users according to security researchers at Sophos.

The cybersecurity firm first coined the term fleeceware last September after it discovered a new type of financial fraud taking place on the Google Play Store. The term itself refers to apps that abuse the ability to offer trial periods to users before their accounts are charged.

When a user signs up for an Android app trial period, they have to manually cancel the trial to avoid being charged. Most users just uninstall apps they don't like and the majority of app developers take this as a sign that they wish to cancel the trial period without being charged.

However, last year Sophos discovered that some app developers didn't cancel an Android app's trial period after it was uninstalled and instead kept charging them despite the fact that they were no longer using the app.

Fleeceware apps

According to Sophos, the firm said that it initially discovered 24 Android apps that were charging high fees, between $100 and $240 per year, for simple apps such as QR readers and calculators after their trial periods ended.

In a recent report though, Sophos revealed that it had discovered another set of Android fleeceware apps that were installed by over 600m Android users. The company's Jagadesh Chandraiah explained how these fleeceware apps were able to become so popular on the Play Store in a blog post, saying:

“Some of these apps are very unprofessional looking. Based on past experience, it may have been the case that these app developers could have used a paid service to bloat their install counts and forge a large number of four- and five-star reviews. You can identify some of these falsified user review clusters if you scrutinize the recent 5 star reviews; one-to-three word, five star reviews have a propensity to be “sockpuppet” reviews.”

Fleeceware apps remain a problem that Google will have to deal with on the Play Store but to prevent falling victim to their scams, it is recommended that users think twice about signing up for a trial period, remember to cancel any trial periods they do sign up for and check their Play Store payment history for any suspicious charges.

Via ZDNet

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Pro
AI tools.
Laying the foundations for successful GenAI adoption
A person in a wheelchair working at a computer.
Why betting on Mac security could put your organization at risk
Zorin OS 17 main image
I tried the latest version of Zorin OS - here's what I thought of this Linux distro
WatchGuard Firebox T45-CW main image
I tried the WatchGuard Firebox - here's what I thought of this 5G appliance
Finger Presses Orange Button Domain Name Registration on Black Keyboard Background. Closeup View
I visited the world’s first registered .com domain – and you won’t believe what it’s offering today
Ubuntu Desktop 23.10 main image
I tested the latest Ubuntu Desktop release - read what I thought of this popular Linux distro
Latest in News
Google Pixel 8a in aloe green showing
Google Pixel 9a benchmark link teases the performance of the upcoming mid-ranger
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 17 (game #1148)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 17 (game #379)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 17 (game #645)
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over
More about pro
AI tools.

Laying the foundations for successful GenAI adoption
Zorin OS 17 main image

I tried the latest version of Zorin OS - here's what I thought of this Linux distro
A cloud symbol imposed over a bank of servers in a data center.

What is cloud hosting and who needs it?
See more latest
Most Popular
BraX3
This obscure brand wants to launch the most privacy-friendly smartphone ever without Google, but with a mysterious open-source OS at its core
HAMR
Seagate reportedly sold two billion GBs worth of storage to two of the world's largest tech companies
Google Pixel 8a in aloe green showing
Google Pixel 9a benchmark link teases the performance of the upcoming mid-ranger
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 17 (game #645)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 17 (game #379)
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 17 (game #1148)
Oracle
Bluehost owner is moving to Oracle Cloud, so could thousands of websites be about to migrate?
Money
Financial leaders still rely on regular tools like Excel for automation tasks over AI
Two examples of the Asus Fragrance Mouse MD101 sitting on a table
Your next computer mouse could have a fragrance compartment for aromatherapy oils – and this Asus idea is nothing to sniff at
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models