Konfety Android Malware Exploits ZIP Tricks to Masquerade as Legit Apps on Google Play

Security researchers from zLabs have discovered a more advanced version of the Konfety Android malware, which uses complex ZIP-level changes to avoid detection and mimic genuine apps on the Google Play Store, marking a dramatic increase in mobile dangers. This malware employs an “evil-twin” strategy, where malicious versions distributed through third-party sources share identical package names with benign apps available on official stores, thereby enhancing its stealth and deceptive capabilities.

Source: GBHackers

Date:

16 July 2025

Categorie(s):

NEWS

Tag(s):

Android, Google, Malware, Mobile, Mobile Development

Vibe coding upstart Lovable denies data leak, cites ‘intentional behavior,’ then throws HackerOne under the bus20 April 2026
Vuln in Google’s Antigravity AI agent manager could escape sandbox, give attackers remote code execution20 April 2026
Vercel Breach Linked to Context.ai, ShinyHunters Says It’s Not Involved20 April 2026
The FTC’s AI portfolio is about to get bigger20 April 2026
Developer tooling provider Vercel discloses breach that exposed some users’ data20 April 2026