More than a million Google accounts compromised

Gooligan is a malware attack that targets Android devices. The attack is affecting 13,000 new users a day and has compromised more than one million google accounts by infecting Android phones through illegitimate third-party apps.

Vipre Mobile SecurityNot all Android devices are affected. Gooligan only affects devices running Android 4 (Jelly Bean, KitKat) and Android 5 (Lollipop). However, according to Google’s Android site, 73-percent of Android devices are running on Android version 4.x or 5.x.

The Gooligan malware attack spreads via apps from third-party app stores and malicious links in phishing attack messages. It downloads a rootkit to steal authentication tokens to breach data from Google Play, Gmail, Photos, Docs, Drive, G Suite and other Google applications. It also installs an app that can steal your account information to post fake ratings and reviews to raise the profile of these apps.

Has your account been compromised? It’s easy to check to find out.

Visit the Check Point website (https://gooligan.checkpoint.com) and enter your email address. It will immediately let you know if your account has been breached.