Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware
Against the spread of malware (malware) has been, and will still be a long, tough battle for Google in particular and the entire Android world in general. Recently, another large-scale malware distribution campaign targeting the Android operating system in the form of advertising fraud has been detected.
- Hackers criticize iPhone security too badly, selling price is not equal to Android security hole
Against the spread of malware on Android will still be an unending fight
More specifically, information obtained by cybersecurity firm CSIS Security Group shows that this malware spreading campaign was launched in June this year with the purpose of injecting a malware called Joker. on Android devices worldwide. This campaign is designed to convince users to download malicious applications and register to use the service. In addition to stealing SMS messages, contact lists and device information of the victim, malicious code can also collect some other important personal information such as passwords, account names and some other important data. The key is being stored on the device.
CSIS Security Group has found a total of 24 Android apps on Google Play (listed below) that contain this Joker malware, some of which have even been downloaded hundreds of thousands of times, leading to great concern. about the breach of confidential information and personal privacy without the victims even knowing it.
- Detection of vulnerabilities in Snapdragon chip allows hackers to penetrate nearly every Android smartphone via wifi
CSIS Security Group found a total of 24 Android apps on Google Play that contain the Joker trojan
Before these 24 malicious apps were discovered and removed from the Google Play platform, they were believed to have helped the Joker malware spread to Android devices in 37 different countries, in which cases were primarily recorded in Australia, China, Germany, India, Singapore, Switzerland, UAE, UK and USA.
According to CSIS Security Group, this malware not only disturbs the operation mode of the actual malicious payload delivery from the command and control server (C&C) controlled by the attacker, but also is also programmed relatively meticulously to leave as few traces as possible in the spread process, namely by 'hiding' in the ad display frames that often appear in applications .
- Detecting malicious viruses in the application has more than 100 million downloads
In addition to receiving and executing every request periodically from the C&C server, malicious code also contains a more dangerous ability, which is silently clicking on ads and hijacking SMS messages containing proxy codes. Right to verify the subscription payments.
The list of 24 applications containing malware found by CSIS Security Group includes:
- Advocate Wallpaper
- Age Face
- Altar Message
- Antivirus Security - Security Scan
- Beach Camera
- Board picture editing
- Certain Wallpaper
- Climate SMS
- Collate Face Scanner
- Cute Camera
- Dazzle Wallpaper
- Declare Message
- Display Camera
- Great VPN
- Humor Camera
- Ignite Clean
- Leaf Face Scanner
- Mini Camera
- Print Plant scan
- Rapid Face Scanner
- Reward Clean
- Ruddy SMS
- Soby Camera
- Spark Wallpaper
If you have installed any of the apps mentioned in the above list, you should check your entire transaction history type to see if there are any suspicious payments you didn't recognize. Also, make sure to closely check the permissions you grant to every application installed on your Android device. And finally, uninstall the malicious application.
- Malicious video files that cause users to lose control of the device are storming the Android world
Please uninstall the application containing malicious code if it appears on your device
You should read it
- These Android apps with more than 100,000 downloads contain Joker malware, please remove immediately
- 6 applications thought harmless but silently charge users, please remove immediately from your phone
- The Joker malware once again bypassed Google's security, spreading strongly on the Play Store
- Series of Android applications contain malicious code you should remove immediately from your device
- What is Malware Joker? How to fight Malware Joker?
- 4 Android VPN applications with over 500 million downloads were found to be ad fraud
- Detect malicious Android apps on Google Play
- Detected 205 malicious applications with more than 32 million downloads on Google Play only in last July
May be interested
- Microsoft Azure is being used to host malware and C2 serversin recent times, microsoft azure cloud services have become an attractive address for malicious content for cyber criminals worldwide.
- Chrome 17 blocks malware that helps usersnine months after the test, the new chrome version has a mechanism to prevent users from accidentally downloading malicious software (malware) - google announced.
- Downloaded malware? Try these fixes before factory reset!getting infected with malware is basically a given at some point; when it happens to you, follow these tips to save your malware-infected computer.
- Discovering many applications containing malware on Google Play Store, Android users should worry graduallythe new google play store has discovered a lot of malware-infected applications never seen before. security companies have been reporting malware campaigns hidden in the android app on the google play store.
- Detect malicious Android apps on Google Playmany malicious applications hidden under the cover are popular games like temple run hidden on the google play app market.
- Sockbot malware was discovered in applications on Google Play Storethis month, symantec discovered a new type of malware on android called sockbot, a legitimate application on google play that allows an attacker to create fake ad traffic.
- Hackers Use Malicious Google Ads to Steal Users' Microsoft Accountsthere is a dangerous trend being deployed by the global hacker community, which is abusing the google ads platform to spread malicious code.
- Malware using machine learning technology, downloaded more than 240,000 times by Android userssparkcat has several notable features that make its spread more dangerous than ever.
- Fileless malware - Achilles heel of traditional antivirus softwareby the definition of being unified and widely recognized by many industry-leading security experts, the malware fileless is the type of malicious code that does not write malicious executable files to the file system.
- Discovered a Vietnamese student posting 42 Android apps containing malware on Google Play Storeeset security researchers have discovered a student living in hanoi, vietnam who authored at least 42 applications containing adware malware to show ads to victims to make money from. them on the google play store