One of the purported benefits of modern day app stores is to make it easier for companies to review and ensure that the software you download is not harmful or malicious. But with upwards of 2.1
First discovered by ESET malware researcher Lukas Stefanko, the 19 apps tested were navigation apps with over 1 million installs each, totaling a combined install base of more than 50 million. Sadly, despite claims that these apps can help users map their routes or include tools such as a compass or speedometer, every single app ended up relying on Google Maps or its related API to perform the real work.
The main difference between these apps and real Google Maps usually came down to a redesigned home screen with a tweaked or sometimes chair UI that functioned as way to serve up ads while also masking the fact the app was really running off or Google's data all along.
To make things a bit more concerning, a few of these Google Maps clones sometimes asked for permissions to access a device's phone dialer and other services that a map app typically would need, something that could pose a potential security risk.
What’s even more annoying is that despite having number of one star reviews for these apps, trying to alert other users that these Google Maps were knock-offs was legit, many still maintained overall ratings above 4 stars. Thankfully, it looks like many of these apps are in violation of Google Maps, which generally state that customers are not allowed to distribute or create substitutes for Google Maps Core Services and pass them off as if they were something else.
Stefanko has since the 19 offending apps found, and while some like the one pictured above are still available, others have been already removed from the Play Store.
In the end, the big takeaway from all this can be a reminder that there are only a handful of companies such as Google, Apple, and, and a few others, that actually have the capacity to gather highly detailed mapping info. So unless you really like a specific app special features like the crowdsourced alerts you get in Waze (which is owned by Google and relies on Google Maps for general location info), it's probably best to just go straight to the source and use one of the big map apps instead.
[via Bleeping Computer]