# Called Operation NoVoice, the campaign involves apps that look and behave completely normally.

*web3 · news · 2026-04-07 · Times of India*

## Key points

- McAfee uncovered a rootkit malware campaign called Operation NoVoice hidden in over 50 Google Play apps.
- These malicious apps were downloaded more than 2.3 million times before being removed from Google Play.
- The malware modifies a core Android system library, allowing attacker code to run in any app.
- Operation NoVoice is designed to survive a factory reset and may require firmware reinstallation to remove.
- Devices running older or unpatched Android versions are most vulnerable to this specific root exploit.

**Companies:** McAfee

[Read the full story on Times of India](https://timesofindia.indiatimes.com/technology/tech-news/researchers-find-50-dangerous-android-apps-that-are-secretly-hijacking-phones-who-is-at-risk/articleshow/130070852.cms)

---

Canonical: https://newsio.io/n/1fc828bb-0f71-4718-b303-8044b6d5bd38/called-operation-novoice-the-campaign-involves-apps-that-look-and-behave-complet
Summarized by Newsio from Times of India. https://newsio.io/how-it-works