Two file management applications on Google Play Store with a collective install of over 1.5 million have been found that send sensitive users’ data to various malicious servers based in China. The app, “File Recovery & Data Recovery,” had over a million installs, while “File Manager” had over 5,00,000. Both apps were uploaded by the same publisher, wang tom.

“Our engine detected two spyware hiding on the Google Play Store and affecting up to 1.5 million users. Both applications are from the same developer, pose as file management applications and feature similar malicious behaviours,” IANS as quoted cyber security company Pradeo as saying.

“They are programmed to launch without users’ interaction and to silently exfiltrate sensitive users’ data towards various malicious servers based in China,” it added.

Although the apps claimed not to collect any data, the security researchers found that they collected highly personal information from users. The stolen data included contact lists, both from the device itself and connected accounts such as email and social networks. Additionally, the apps gathered media content such as pictures, audio, and video, as well as real-time user location, mobile country code, and network provider name.