Nicknamed “Gooligan,” the malware uses a phishing scam to steal authentication tokens for Google accounts, allowing it to download fake apps to the users’ Android phones and tablets without their knowledge, according to Checkpoint Security.
Gooligan’s primary motivation appears to be monetary. Its creators likely receive payment when the apps it downloads promote themselves by using the hijacked Google account to leave fake positive reviews and simulate tapping on ads… More at PC Mag.
This week I had to spend some time fixing a friend’s HTC phone which had a Chrome issue. A web page continuially popped up advising that the device had a virus and to install an app etc etc.
I’m not saying nothing like this ever happens on an iPhone, but I like living in a bubble where I presume everything is perfectly safe (because it hasn’t happened yet).