Learn how to identify and how to delete fake apps.

Beware of fake apps pretending to be Proton VPN

Recently, we have noticed an uptick in the number of fake Proton VPN apps. Hackers create fake versions of popular applications, like Evernote, Signal, and Proton VPN, to smuggle malware onto unsuspecting users’ devices. Once they are downloaded, the malware contained in these fake apps can unleash ads all over your device, take control of your device’s camera, or even let attackers steal your identity(new window). This article explains how to avoid these fake apps and what you should do if you’ve downloaded one.

How to spot fake apps

You should not download apps from unofficial sources. Proton VPN apps are only available on the App Store(new window), the Play Store(new window), the Proton VPN website(new window), or F-Droid(new window).

While there are relatively benign copies of our apps in different corners of the Internet, if you do not download the app from one of these three sources, we cannot assure its quality. To download an official Proton VPN app, you must get it from our website, the App Store, or the Play Store.

Users still need to remain vigilant in the official app stores as even they are not 100 percent safe. There was a fake WhatsApp application(new window) that was downloaded over 1 million times from the Play Store in 2017. That app only spammed its users with advertisements, but it demonstrates the risk that exists. There was also an “Encryption Proton Mail keyboard” available briefly in the Play Store. Make sure you check the name of the app as well as the name of the developers. If either seems suspicious, do not download the app. 

A fake Proton Mail app while it was still available in the Play Store.

Fake apps pose the largest risk to Android users, but macOS and Windows users should also be careful. Only download apps from a trusted source and never download an app directly from a link shared via social media. If you are using an iOS device, you are relatively safe since you can only download apps from the App Store. (If you jailbreak your device, then this warning applies to you as well.)

Everyone can download any of our apps for free from our official sites, so there is no advantage to downloading them from an unverified source. We only charge a subscription fee for our premium services. Users who only want privacy protection can sign up for free plan(new window).

What to do if you downloaded a fake app

If you downloaded a fake Proton VPN app, you should immediately delete it. Your data is not secure as long as the fake app is on your device.

To delete fake apps from your Android: 

  1. Open the app tray.
  2. Tap and hold the app you wish to delete. (Hold your finger on the app until you feel a vibration or notice that the screen changed.)
  3. Drag the app onto the Home screen.
  4. Continue dragging the app to the Uninstall option.
  5. Release your finger over the Uninstall button.

Download our secure and free VPN(new window).

(Remember, these steps or the names of the folders might be slightly different for you, depending on the brand of your Android device.)

Unfortunately, malicious Android apps often try to prevent you from deleting them by making their icon and title invisible. If you cannot find the app on your device, you should go to your installed apps page.

To find hidden apps on an Android:

  1. Tap the Settings icon. It looks like a gear.
  2. In the Settings menu, tap Apps & notifications.
  3. Tap See all apps.
  4. Once you are looking at the list of all your apps, scroll until you find a blank space. This will be the invisible fake app. Tap it and select Delete.

If your device will not let you delete the fake app because it was able to get administrator permission, your best option is to wipe your device’s memory and start over.

To perform a factory reset:

  1. Tap the Settings icon. It looks like a gear.
  2. In the Settings menu, tap Backup & reset.
  3. Tap Factory data reset. (This will delete all data on your phone.)

How to recover from a fake app

Once you have cleared the counterfeit app from your device, you need to resecure your accounts. If you happened to download a fake Proton VPN app, here is how you can take back control of your Proton VPN account. You should first check your account page to make sure nothing (like your recovery email) has been altered. Finally, you should change your password.

To change your Proton VPN password:

  1. Go to https://account.protonvpn.com/login
  2. Enter your login credentials
  3. Once you are logged in, click Account on the left.
  4. Click Change Proton password.

If you fear your Proton Mail account might be at risk, you should check to see if there are any active sessions that you do not recognize. If there are, close them immediately. And make sure your recovery email address hasn’t been changed. Then change your password.

To secure your Proton Mail account:

  1. Go to https://account.proton.me
  2. Enter your login credentials.
  3. Click Settings.
  4. Find and click Security in the menu on the left.
  5. Under Session Management you will see all the sessions currently open. If there is one you do not recognize, click Revoke. If you are very concerned about your security, you can click Revoke all other sessions.
  6. You will be prompted to enter your password to confirm that you want to end these sessions.
  7. Then find and click Account in the menu on the left.
  8. Scroll down until you see Change password.

Downloading a fake app is one of the quickest ways to compromise your device. Unfortunately, it only takes one weak link to put your data risk. To keep your data private, you must always be vigilant.

Best Regards,
The Proton VPN Team

You can follow us on social media to stay up to date on the latest Proton VPN releases:

Twitter (new window)Facebook(new window) | Reddit(new window) | Instagram(new window)

To get a free Proton Mail encrypted email account, visit: proton.me/mail(new window)

Protect your privacy and security online
Get Proton VPN free

Related articles

Why a VPN is important when working remotely
In 2023, roughly 40% of workers in the US worked remotely or on hybrid schedules (some days in the office, some days at home). This arrangement offers benefits to employees and employers, but it also introduces new cybersecurity vulnerabilities, like
Proton VPN now operates one of the largest VPN server networks in the world.
At Proton VPN, we’ve reached a new milestone in our mission to make online privacy the default for everyone. Now offering over 5500 servers on six continents, Proton VPN is one of the largest and most popular VPN services in the world. And we’re grow
What is DNS security?
In this article, we’ll look at DNS security, what it means for your businesses, and how using Proton VPN provides your business with the DNS security it needs.  The Domain Name System (DNS) translates human-friendly domain names to numeric IP addres
Paris Olympics
The 2024 Summer Olympics in Paris begins this July. While you’ve likely already missed your chance to get a ticket and witness the best athletes from around the world in person, there are plenty of ways to enjoy the games from the comfort of your hom
Where to watch euros
Every four years, the entire continent of Europe turns its eyes to see who will be crowned as the continent’s champion of football (or soccer for the Americans).  This is the 17th edition of the UEFA European Football Championship, in which 24 natio
How to enable location services
Location services refer to a combination of technologies used in devices like smartphones and computers that use data from your device’s GPS, WiFi, mobile (cellular networks), and sometimes even Bluetooth connections to determine and track your geogr