New Lookout Research Showcases Evolving Spyware Techniques – Google Play

Lookout Security Intelligence researchers have just released information on the discovery of the Igexin advertising software development kit (SDK) which was found in more than 500 apps which were available on Google Play and downloaded by more than 100 million Android users.
The actor(s) behind Igexin created a malicious ad SDK in order to trick developers into building the malicious software into their apps, thus delivering spyware capabilities such as call log exfiltration. The Igexin discovery further showcases the evolving technique of targeting app developers and SDKs, and triggering spyware in apps after they’ve made it into the official apps store.
More information can be found in Lookout’s blog post HERE.