A security researcher at Proofpoint spotted a malicious Pokemon Go app that was infected with a remote access tool called “Droidjack,” that would give attackers a full control over the victim’s phone.
Nintendo’s new Pokemon Go augmented reality game has quickly proven to be a cultural phenomenon, since it is only available in certain countries right now, and a malicious version of the software is moving to infect Android phones with code that provides hackers a backdoor to their phones.
The said malicious version of the game was uploaded via file sharing service on July 7th, just a few days before it’s official release.
Proofpoint just pointed out that one of the major features distinguishing Android phones from iPhones is the ability to “side load’ files being downloaded outside Google’s Play Store. Part of it, it allows users more flexible, but is also an ‘extremely risky practice’, because Android systems are more vulnerable to viruses and hacking than iPhone.
Although, that was not the first problem for Pokemon Go as it has an immense popularity experienced significant server issues at launch.