Even installing the application from the official Google or Apple catalog on a smartphone, you cannot be sure of the security of your wallet and personal data. There are several categories of mobile programs that you should avoid downloading and installing.
First, in the case of Android, these are APK files downloaded from unauthorized sources and installed manually. Built-in advertising is the lesser evil that one may encounter, because often these applications, written by someone unknown or modified, can steal passwords and other valuable data. You should be especially careful with banking applications – they need to be downloaded only from official sources.
Secondly, you should not install applications with a dubious subscription – astrological forecasts, fortunetelling, prediction of the future or horoscopes. By subscribing, a person provides fraudsters with earnings at the level of several thousand rubles per month. For example, one of such applications offers fortune-telling on the lines on the hand – it photographs the palm of your hand, and for “decryption” it requires an expensive subscription.
Thirdly, these are fakes masquerading as well-known applications. For example, the game about the goose Untitled Goose Game, from which everyone goes crazy, has never been released for Android-devices, but Google Play has already posted a lot of fakes for it. In the best case, they will show annoying ads, in the worst, they may require access to SMS, contacts and other personal sections of the smartphone, and at the same time they will try to steal some password through a fake login form.
Fourth, there is a separate category of applications masquerading as useful tools and trying to get where they should not. For example, a weather application that requires access to the camera and SMS, or a flashlight that suddenly needs audio recording of calls or reading the address book. This must be monitored.
Fifth, alternative social networking clients. Yes, among them there are proven applications, but in many cases they try to just steal the username and password, then to penetrate the account. And if this password is used to enter accounts on other sites, then the danger of losing personal information or becoming a malicious spam distributor grows many times.