Usually, in relation to scams, there may be clearly a nasty occasion and it is often the grifter. Nevertheless, a brand new rip-off uncovered by safety researchers at ESET lands squarely within the everybody might be unsuitable zone.
The rip-off entails a sequence of 28 apps dubbed “CallPhantom” by ESET that racked up greater than 7.3 million downloads on the Google Play Retailer. The assorted apps promised to offer customers entry to name histories, SMS data and even WhatsApp name logs for any telephone quantity.
Newest Movies From
You might like
A few of the apps demanded customers’ e mail addresses the place the pretend name historical past would supposedly be despatched. Nevertheless, no “knowledge” could be despatched till after fee.
Surprisingly, not one of the apps requested intrusive permissions on the scammed particular person’s telephone.
Funds to the apps have been cut up up as effectively. Some relied on the Google Play Retailer’s official billing system, which is required for apps that provide in-app purchases. Some utilized third-party funds or had fee card checkout types that side-stepped Google’s insurance policies although.
ESET says that it submitted its report concerning the CallPhantom apps to Google in December 2025, and the entire apps in query have since been eliminated. Shopping the Play Retailer in the present day, we have been unable to seek out any proof of those apps.
Find out how to keep secure from malicious apps
(Picture credit score: Google)
Look, clearly, nobody deserves to be scammed. That mentioned, once you go in search of sketchy apps that promise to allow habits subsequent door to stalking, you usually tend to discover packages constructed to grift.
So… do not try this.
What to learn subsequent
Per ESET, the apps within the analysis have been primarily focused at folks in India and the Asia-Pacific areas.
Nonetheless, should you’ve been scammed, there may be recourse for refunds within the Play Retailer app. Google lays out the method on its Cancel, pause, change subscription web page.
Past that, for any app make sure to examine the evaluations past the glowing 5 Stars on the high of the web page.
Solely obtain apps from respected publishers, at all times apply safety updates and keep away from downloading any non-essential apps. Remember to reject and disable accessibility permissions too. After all, allow Google Play Defend in addition to this built-in safety instrument scans all your current apps and any new ones you obtain for malware and different threats.
CallPhantom would not seem to have launched malware or viruses, however it’s best to nonetheless shield your smartphone with top-of-the-line Android antivirus apps.
Apps can do actual injury, particularly these with malicious intentions. It is why we advocate limiting the variety of apps you may have put in general. And maybe, do not attempt to discover out who different persons are calling utilizing a shady app making doubtful guarantees.
Comply with Tom’s Information on Google Information and add us as a most popular supply to get our up-to-date information, evaluation, and evaluations in your feeds. Subscribe to Tom’s Information on YouTube and comply with us on TikTok.
