What's worse: only 23 out of 250 have achieved 100% detection of threats without false positives. I, you, would use these.
Everyone who regularly uses the Internet knows that there is a very thin line between a useful antivirus program and a scam. Unfortunately, this is just as true in the mobile world, where quite serious malicious software fills up our devices, especially if we install silly, unprotected applications, waiting for our equipment to be repaired.
It seems that most of these solutions are a real scam. A study published by the Austrian company AV-Comparatives indicates that at least Two-thirds of the existing anti-virus for Android is useless and they do not work like they promote.
The organization tested 250 solutions against viruses inspired by existence Virus shield, an app on the Google Play Store that promised to check your computer to find and remove malware when in fact it was just a progress bar that did not really do anything. Needless to say, it was a paid application and fortunately Google retained profits and returned them to interested users.
Only 80 solutions have achieved 30% efficiency
The research group carried out a simple test: each antivirus program was installed in an independent team and automated the device to open the browser, download the application with harmful content, and then install it.
The process was repeated 2,000 times for each application, and the team downloaded 2,000 of the most popular malicious programs from last year, understanding that by 2019 Most should update their antivirus database or at least index the threat.
However, the results were overwhelming: only 80 out of 250 have achieved the required minimum efficacy of 30%. In fact, many antivirus solutions did not even scan applications downloaded by phones, just by looking at the APK name or installation package to know – based on the black / white list of applications – what malware was and what not.
To get more listings, many applications have been detected as malware: not having their own white list installation package, the antivirus program was marked as a virus. This is the pinnacle of irony.
This also means that if a malicious APK moves the "com.apple" extension as a wildcard in the name.[nombre cualquiera].apk ", a large part of the antivirus program will allow you to enter the phone without any problem.
170 applications, which did not exceed the minimum barrier of 30%, are, in all justified doubts, fraud. AV-Comparatives ensures that most of these applications appear to be developed by programmers amateur or by companies software which do not belong to the security industry.
Many of them are created by companies that must have an antivirus program in their application portfolio, and even report an example of at least fifty applications developed by the same person, in the same format and without any functionality, where only the design of buttons and ads changes, which appears on them.
Lukas Stefanko, ESET mobile software analyst, has been confirming the study of an Austrian company on his Twitter account for months.
Do you use an anti-virus that is detected as a risky application?
This Fake Antivirus 2019 uses only a black list and a white list of application package names + permission checking. Continue to forget about the white list. pic.twitter.com/CdvlPkGPvL
– Lukas Stefanko (@LukasStefanko) November 28, 2018
#FreeAndroidTip: Before installing the application, also check other applications for developers.
The creators of the fake software "Antivirus 2019" have a lot of free time, so they decided to create a Solitaire game.
It is unlikely that the company will focus on solid software as well as creating games. pic.twitter.com/els6nJBmqj
– Lukas Stefanko (@LukasStefanko) December 10, 2018