Are you one In a million Gooligan victim?

  • 4

Are you one In a million Gooligan victim?


A family of malware called ‘Ghost Push,’ a vast collection of ‘Potentially Harmful Apps’ (PHAs) that affect devices running the Android operating system has in the recent month evolved into Gooligan. Gooligan is more aggressive as it roots the device to gain access to highly privileged system running version 4 (Ice Cream Sandwich, Jelly Bean, and KitKat) and version 5 (Lollipop) of Google’s Android operating system.

Once on the device, it downloads a module that enables it to steal the user’s email account and Google’s authentication tokens that provide it password-free access to the user’s Google Photos, Google Play account, files in Google Docs and Google Drive and G Suite.  It also uses your account information to install adware on your device and publish fake ratings and reviews on the Google Play Store, raising the profile of these spam apps. The fraudulent advertising revenue generated by these installed apps can generate up to $320,000 a month for the cyber criminals behind the Gooligan campaign

Check point the cyber security company that discovered this malware say you can check if your account is compromised by accessing the following web site that we created:

If your account has been breached, the following steps are required:

  1. A clean installation of an operating system on your mobile device is required (“flashing”).
  2. Change your Google account passwords immediately after this process.

Gooligan spreads when victims download and install an infected app. Cyber criminals are slinging the malware by tricking victims into following malicious links in phishing messages.


Walmar Digital