Android users have been warned for malware infecting over 2 million devices

The said malware was hidden inside 45 game guides on Google’s official Play store for up to five months between 2016 and early this year, with several reaching 50,000 installs.

And the app enables hackers to take ‘remote control’ of devices, and can’t be deleted  – and has been used to display bogus, illegal adverts in user’s devices, security researchers Check Point say.

FalseGuide malware could be used to control infected phones as a ‘botnet’ – using them to perform hack attacks against websites and networks. Check Point says, ‘Depending on the attackers’ objectives, these modules can contain highly malicious code intended to root the device, conduct a DDoS attack, or even penetrate private networks.’

They have notified Google of the malware, and the infected apps have since been removed from the store.

Check Point also said – as with many dodgy apps – the telltale sign is the permissions the app requests as it is installed.

They have, ‘FalseGuide requests an unusual permission on installation – device admin permission. The malware uses the admin permission to avoid being deleted by the user, an action which normally suggests a malicious intention.