Android users beware!

If you’re playing Pokemon Go on an Android phone you need to be very careful when installing outside applications. While the Google Play store is normally a very safe space to install fun apps, there are plenty of bad people out there that want to take advantage of you. Now, this malware is being called FalseGuide and it includes more than just Pokemon Go. Since November of 2016, this guide series has accumulated over two million downloads for various games.

Once installed, the application will ask for device admin permission in order to run. When you allow the app to do this, you can no longer delete it the way you would remove a normal app. As soon as the app becomes a device admin, it is able to download malicious software onto your Android device. This software allows the malware creator to take control of your device.

Depending on what the attacker has in mind, he or she can root the device, conduct a DDoS attack, or attack private networks. Since being reported, the application has been removed from the Google Play store. Another attempt was made by the attacker with a second app which was also removed immediately by Google.

If you think you may have downloaded any malicious software there are a few steps you can take. I would begin by checking online to see if the application has complaints or negative reviews. You can then remove the application from your phone, note the developer, and avoid downloading any future applications that they create. If you have allowed this malicious software to be a device admin, you must first go into your device’s security settings, remove the device admin permission, and then delete the application.

If you know of any malicious software that has been created and disguised as a Pokemon Go application, please comment down below and provide the name and developer of the fake app to prevent further infections.