Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware
Against the spread of malware (malware) has been, and will still be a long, tough battle for Google in particular and the entire Android world in general. Recently, another large-scale malware distribution campaign targeting the Android operating system in the form of advertising fraud has been detected.
- Hackers criticize iPhone security too badly, selling price is not equal to Android security hole
Against the spread of malware on Android will still be an unending fight
More specifically, information obtained by cybersecurity firm CSIS Security Group shows that this malware spreading campaign was launched in June this year with the purpose of injecting a malware called Joker. on Android devices worldwide. This campaign is designed to convince users to download malicious applications and register to use the service. In addition to stealing SMS messages, contact lists and device information of the victim, malicious code can also collect some other important personal information such as passwords, account names and some other important data. The key is being stored on the device.
CSIS Security Group has found a total of 24 Android apps on Google Play (listed below) that contain this Joker malware, some of which have even been downloaded hundreds of thousands of times, leading to great concern. about the breach of confidential information and personal privacy without the victims even knowing it.
- Detection of vulnerabilities in Snapdragon chip allows hackers to penetrate nearly every Android smartphone via wifi
CSIS Security Group found a total of 24 Android apps on Google Play that contain the Joker trojan
Before these 24 malicious apps were discovered and removed from the Google Play platform, they were believed to have helped the Joker malware spread to Android devices in 37 different countries, in which cases were primarily recorded in Australia, China, Germany, India, Singapore, Switzerland, UAE, UK and USA.
According to CSIS Security Group, this malware not only disturbs the operation mode of the actual malicious payload delivery from the command and control server (C&C) controlled by the attacker, but also is also programmed relatively meticulously to leave as few traces as possible in the spread process, namely by 'hiding' in the ad display frames that often appear in applications .
- Detecting malicious viruses in the application has more than 100 million downloads
In addition to receiving and executing every request periodically from the C&C server, malicious code also contains a more dangerous ability, which is silently clicking on ads and hijacking SMS messages containing proxy codes. Right to verify the subscription payments.
The list of 24 applications containing malware found by CSIS Security Group includes:
- Advocate Wallpaper
- Age Face
- Altar Message
- Antivirus Security - Security Scan
- Beach Camera
- Board picture editing
- Certain Wallpaper
- Climate SMS
- Collate Face Scanner
- Cute Camera
- Dazzle Wallpaper
- Declare Message
- Display Camera
- Great VPN
- Humor Camera
- Ignite Clean
- Leaf Face Scanner
- Mini Camera
- Print Plant scan
- Rapid Face Scanner
- Reward Clean
- Ruddy SMS
- Soby Camera
- Spark Wallpaper
If you have installed any of the apps mentioned in the above list, you should check your entire transaction history type to see if there are any suspicious payments you didn't recognize. Also, make sure to closely check the permissions you grant to every application installed on your Android device. And finally, uninstall the malicious application.
- Malicious video files that cause users to lose control of the device are storming the Android world
Please uninstall the application containing malicious code if it appears on your device
You should read it
- 9 malicious applications on Google Play, if installed, should be removed immediately
- Android apps contain malicious code that uses motion sensors to avoid detection
- These Android apps with more than 100,000 downloads contain Joker malware, please remove immediately
- 6 applications thought harmless but silently charge users, please remove immediately from your phone
- The Joker malware once again bypassed Google's security, spreading strongly on the Play Store
- Series of Android applications contain malicious code you should remove immediately from your device
- What is Malware Joker? How to fight Malware Joker?
- 4 Android VPN applications with over 500 million downloads were found to be ad fraud
- Detect malicious Android apps on Google Play
- Detected 205 malicious applications with more than 32 million downloads on Google Play only in last July
- Sockbot malware was discovered in applications on Google Play Store
- Android users need to remove these 8 malicious Joker apps immediately