Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware

Against the spread of malware (malware) has been, and will still be a long, tough battle for Google in particular and the entire Android world in general. Recently, another large-scale malware distribution campaign targeting the Android operating system in the form of advertising fraud has been detected.

1. Hackers criticize iPhone security too badly, selling price is not equal to Android security hole

Against the spread of malware on Android will still be an unending fight

More specifically, information obtained by cybersecurity firm CSIS Security Group shows that this malware spreading campaign was launched in June this year with the purpose of injecting a malware called Joker. on Android devices worldwide. This campaign is designed to convince users to download malicious applications and register to use the service. In addition to stealing SMS messages, contact lists and device information of the victim, malicious code can also collect some other important personal information such as passwords, account names and some other important data. The key is being stored on the device.

CSIS Security Group has found a total of 24 Android apps on Google Play (listed below) that contain this Joker malware, some of which have even been downloaded hundreds of thousands of times, leading to great concern. about the breach of confidential information and personal privacy without the victims even knowing it.

1. Detection of vulnerabilities in Snapdragon chip allows hackers to penetrate nearly every Android smartphone via wifi

CSIS Security Group found a total of 24 Android apps on Google Play that contain the Joker trojan

Before these 24 malicious apps were discovered and removed from the Google Play platform, they were believed to have helped the Joker malware spread to Android devices in 37 different countries, in which cases were primarily recorded in Australia, China, Germany, India, Singapore, Switzerland, UAE, UK and USA.

According to CSIS Security Group, this malware not only disturbs the operation mode of the actual malicious payload delivery from the command and control server (C&C) controlled by the attacker, but also is also programmed relatively meticulously to leave as few traces as possible in the spread process, namely by 'hiding' in the ad display frames that often appear in applications .

1. Detecting malicious viruses in the application has more than 100 million downloads

In addition to receiving and executing every request periodically from the C&C server, malicious code also contains a more dangerous ability, which is silently clicking on ads and hijacking SMS messages containing proxy codes. Right to verify the subscription payments.

The list of 24 applications containing malware found by CSIS Security Group includes:

1. Advocate Wallpaper
2. Age Face
3. Altar Message
4. Antivirus Security - Security Scan
5. Beach Camera
6. Board picture editing
7. Certain Wallpaper
8. Climate SMS
9. Collate Face Scanner
10. Cute Camera
11. Dazzle Wallpaper
12. Declare Message
13. Display Camera
14. Great VPN
15. Humor Camera
16. Ignite Clean
17. Leaf Face Scanner
18. Mini Camera
19. Print Plant scan
20. Rapid Face Scanner
21. Reward Clean
22. Ruddy SMS
23. Soby Camera
24. Spark Wallpaper

If you have installed any of the apps mentioned in the above list, you should check your entire transaction history type to see if there are any suspicious payments you didn't recognize. Also, make sure to closely check the permissions you grant to every application installed on your Android device. And finally, uninstall the malicious application.

1. Malicious video files that cause users to lose control of the device are storming the Android world

Please uninstall the application containing malicious code if it appears on your device