Android users warned over Google Play Store password security app that can steal your money – delete it NOW

ANDROID users are being urged to delete a Google Play store password security app that can steal your information and money.

The app, called 2FA Authenticator, poses as a legitimate tool to help users keep their online accounts safe, but instead drops malware into their mobile devices.

Getty – ContributorAndroid users are being urged to delete the 2FA Authenticator app[/caption]

This way, it allows cybercriminals to hack information stored on users’ phones, according to security research firm Pradeo.

The company found the app installs a virus named Vultur in users’ phones, which compromises your phone’s security and financial information such as banking details.

“Our analysis revealed that the dropper automatically installs a malware called Vultur which targets financial services to steal users’ banking information,” read the report.

The app’s Google Play profile did not disclose the critical permissions it requests in order to hack into users’ phones, as reported by The Times of India.

The hidden permissions allow the app to automatically disable the keylock and any associated password security, collect and send users’ application list and localization, and freely perform activities even when the app is shut off.

The app can also download third-party apps and overlay other mobile apps’ interfaces.

While it has been removed from the Google Play store after Pradeo shared their findings, those who already have it on their phones can still fall victim to the malware.

The app currently has more than 10,000 users, and these users will need to delete it from their phones manually.