×

Major Security Threat: Over 50 Android Apps Found to Hack User Phones

A recent investigation by McAfee has uncovered a serious security threat involving over 50 Android applications that have been secretly hacking user phones. These apps, which appeared harmless and were available on the Google Play Store, had been downloaded millions of times before their removal. The malware, known as a Rootkit, embeds deeply in the phone's system, allowing hackers to gain complete control. Users, especially those with older Android versions, are at heightened risk. This article provides insights into the operation of this cyber attack and offers essential tips for safeguarding your device against such threats.
By Narendra Chaudhary Apr 7, 2026, 10:58 IST

Introduction to the Security Breach

Researchers from McAfee have made a significant discovery, identifying more than 50 Android applications that have been quietly compromising users' phones. These apps were available on the Google Play Store and had been downloaded over 2.3 million times before their removal. If you've recently downloaded a phone cleaner, puzzle game, or photo editing app, your device may be at risk.

Mechanism of the Cyber Attack

This cyber attack has been dubbed 'Operation NoVoice.' The identified apps appeared normal and functional, leading users to trust them without suspicion. However, they contained a specific type of malware known as a Rootkit, which is particularly dangerous as it embeds deeply within the phone's system, making it hard to detect. Once users downloaded these apps, they operated as expected while secretly connecting to a remote server to transmit device details, software versions, and security update information.


How Hackers Gain Control

After acquiring information from the user's phone, hackers would send tailored code based on that data. If successful, this code would grant the malware 'root access' to the device, allowing hackers complete control. They could alter essential system files and execute their code within any app silently. Alarmingly, this advanced malware could persist even after a standard factory reset, often requiring a complete reinstallation of the phone's software to remove it.

Who is Most at Risk?

According to McAfee, users with older Android versions or those lacking the latest security updates are particularly vulnerable. While newer devices offer some level of protection, the risk remains if infected apps have been downloaded.


Tips for Staying Safe

To protect against such cyber threats, it's crucial to regularly review the apps installed on your phone. If you notice any app that you did not personally install, remove it immediately. Always keep your device updated with the latest software, as new security patches help defend against these threats. Additionally, exercise caution when downloading new apps; do not solely rely on the fact that an app is available on the Play Store, as dangerous apps can sometimes slip through.