Recent years，China’s mobile internet APP review mechanism has been continuously improved，and the governance of malicious apps has continued to advance. High-risk malicious APPs cannot be published through APP stores，and gradually transferred to channels with imperfect audit mechanisms，e.g. advertising platforms，cloud platforms and personal websites. But，the number of counterfeit apps with similar icons or names to genuine APP is on the rise in APP stores. These counterfeit APPs usually use the “Newsjacking” way to spread and entice users to download and install，causing users to disclose personal information or malicious deductions.