Remove This Android App That Got You Malware Instead of Netflix
In what is becoming a recurring ritual, Google has removed the rogue Android malware app from the Google Play Store. This time, the culprit is FlixOnline , a malicious app that tricks people into pretending to offer them free access to Netflix. Banishing it from the Play Store is great, but you should remove it from your device if you get sucked into the download at any time.
While most of Lifehacker’s readers were probably smart enough to dodge the app’s promise – two months of free Netflix is completely free! – I see this idea completely working for a lot of people who, stricken by pandemic negligence, were just looking for something else to do during quarantine. Well spoiler: There is no easy way to get Netflix for free ( not even from Netflix itself ).
If you installed the FlixOnline app hoping to be able to stream King’s Gambit for free, you were wrong. Instead, by giving the app the “Overlay”, “Battery Optimization Ignore” and “Notification” permissions, you gave it everything it needs to serve fake overlays to sign in to legitimate apps, always launch, and access (or respond) all of your device’s notifications. And if you have WhatsApp installed, things get worse, as Check Point Research describes:
“Check Point Research (CPR) recently discovered malware on Google Play hidden in a fake application that can spread via messages from WhatsApp users. If a user has downloaded a fake app and inadvertently granted the appropriate permissions to the malware, the malware is able to automatically respond to the victim’s incoming WhatsApp messages with the payload received from the Command and Control (C&C) server. This unique technique could allow attackers to spread phishing attacks, spread false information, steal credentials and data from WhatsApp user accounts, and more. ”
You probably remember whether you installed the FlixOnline app or not – most likely you would have done so within the last few months. If you have one and have launched it, it may not show up in the app drawer due to its ability to hide its own icon. Instead, visit your device equivalent: Settings> Apps & Notifications> App Info to uninstall it (the exact path for your Android device may differ).
You will also want to change passwords for all apps and services you use on your device, just in case. This is especially true if you’ve had to sign in (or re-sign in) to any of your apps or services after you’ve installed FlixOnline. Finally, use this as a cautionary moment and focus on improving your safety habits in the future. If something sounds too good to be true, it probably is; if you’re not sure, a quick web search is usually all you need to find out if an app is legitimate or incredibly suspicious.