An infected version of Nintendo’s new augmented mobile reality game Pokémon GO has been found on third-party websites, according to Fortune.
The game, first launched in Australia and New Zealand, has become a huge hit. The game tracks users’ location and allows them to find and catch Pokémon in real-time.
Less than three days after the game’s release in Australia and New Zealand, a malicious version of the app was uploaded to a third-party website.
According to Fortune, security firm Proofpoint found the infected version of Pokémon GO. Researchers from the firm discovered the version had a malicious remote access tool called DroidJack, which could virtually give an attacker full control over the victim’s phone.
Proofpoint recommends downloading applications from legitimate app stores to avoid compromising your device.
If you worried that you’ve downloaded the malicious app, click here to find out how you can determine if your phone is infected.