This is weird stuff, so apparently mobile AV's are bad at detecting this malware? Sounds quite concerning, and it's another reason not to blindly trust apps on Google Play. And apparently this technique also works on Windows, but I assume AV's will be able to spot this easier. https://www.bleepingcomputer.com/ne...m-binds-android-malware-with-legitimate-apps/
Most likely this does not affect downloads from the Play Store and just affects some APK files downloaded from dodgy websites.
You might be right, but I understood it differently. Hackers may use this tool to upload legitimate apps that load malware in the background and is capable to bypass mobile AV's. Now this would be scary, but it's about the same as for example the fake MSI Afterburner and similar attacks on Windows. However, this is easier to spot with behavior blocking tools. https://www.tomshardware.com/news/f...ects-targets-with-coin-miner-password-stealer
