Security researchers at Kaspersky on Monday confirmed that some versions of the Pinduoduo app contained malware that exploited Android vulnerabilities to install backdoors and access user data. This revelation comes days after Google suspended the app from its Play Store.
Pinduoduo, a popular online shopping app, has come under fire after researchers at Chinese cybersecurity firm DarkNavy revealed that older versions of the app contained malware. Owned by PDD Holdings, Pinduoduo has nearly 800 million users, mainly from China.
Its U.S.-based counterpart Temu, also owned by PDD Holdings, has ambitions of increasing its customer base in North America. Temu was one of the most frequently downloaded apps in the U.S. App Store between September 2022 and January 2023. This development could severely hamper its growth and comes at a time when U.S. lawmakers are considering banning TikTok over security concerns.
Malware Could Escalate Privileges, Execute More Modules, and Steal Data
Kaspersky’s researchers analyzed versions of the Pinduoduo app distributed through a Chinese app store. They found that malicious versions of the app could install backdoors on devices and compromise users’ privacy and security.
“Some of the versions of the Pinduoduo app contained malicious code, which exploited known Android vulnerabilities to escalate privileges, download and execute additional malicious modules, some of which also gained access to users’ notifications and files,” said Igor Golovin, a security researcher at Kaspersky, in an email to VPNOverview.
“Our products detect these versions as HEUR:Backdoor.AndroidOS.Pinduo.a. The infected versions of the app were distributed via one local app store,” Golovin added.
In some regions, Google has tagged the app as “harmful” to warn users, explaining that it can grant unauthorized access to a user’s device and data. The tech giant urged users to remove the app from their devices.
Kaspersky clarified to VPNOverview that it did not discover the malicious activity, but it detected it. These findings provide more clarity behind Google’s decision to suspend the app.
Keeping Your Devices Safe
Smartphones add convenience to our daily lives, but can pose a security threat if compromised. It’s important to avoid downloading applications from outside official app stores and pay close attention to the banners or other information provided by Google and Apple. Downloading applications from obscure, third-party platforms could expose you to malware and other threats.
To learn more about how to protect your device, our article on smartphone privacy is a great resource. Our guide to optimizing Android privacy settings also contains some helpful tips.
