Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11The Joker malware once again bypassed Google's security, spreading strongly on the Play Store
Security researchers at Check Point have just discovered that the Joker malware is spreading on Android devices. Joker often lurks in legitimate applications and then silently signs up for high-cost services without the user's knowledge.
The Joker has been repeatedly deleted from the Play Store several times, but it soon finds a way to return. This time, it hides the malicious DEX executable code inside the application as a Base64 encoded string. Once hacked into the victim's device, the strings will be decoded and then launched.
The Joker malware has been around since 2017 and is very sophisticated After receiving a warning from Check Point, Google removed 11 applications containing Joker malware from the Play Store on April 30, 2020.
"It is difficult to detect the Joker malware even though Google has invested heavily in Play Store protection measures , " said Check Point expert Aviran Hazum, who discovered Joker's new intrusion methods. "Although Google has removed applications containing Joker from the Play Store, we think this malicious code will be able to return in the future."
First discovered in 2017, Joker is a well known and popular Android malware. In addition to scams and self-registration of expensive services, Joker can also steal information such as SMS, contacts and device information.
Last year, Joker-related campaigns reached a peak when a number of security units such as CSIS Security Group, Trend Micro, Dr.Wed and Kaspersky discovered a series of malicious applications. In addition, Joker is constantly finding unique ways to exploit vulnerabilities in Play Store's security testing method.
To hide their true nature, the guys behind the Joker used a variety of methods including chain security to avoid detection tools, buy fake reviews to attract users to download. application. The most sophisticated technique is versioning, bringing the Play Store a clean, quality application to attract users to download, then silently update more malware.
Below is a list of applications infected with the new Joker malware, the application name is in the 2nd column, behind the com .
List of applications infected with Joker malware new version You should check if your device has any of these installed. If so, immediately remove and check the transaction history for any suspicious payment.
Lesley MontoyaYou should read it
- Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware
- What to do when Google Play Store is not working?
- Android apps contain malicious code that uses motion sensors to avoid detection
- Google declined to add 55% of the new Android application to Play Store in 2018, but that's not enough!
- Download Google Play 24.2.15-16
- How to download CH Play and install Google Play on the phone
- The best Google Play Store tips and tricks for Android users
- 4 Android VPN applications with over 500 million downloads were found to be ad fraud
May be interested
- How to identify and avoid fake Android apps in Play Store
the fake android app in play store is always a problem. phishers create design applications that look like real applications, often using the same icon and name, to trick users into downloading and then attack them with ads (or worse) , are malware). - BankBot is back on Play Store - an uninterrupted story about malware on Androidafter google's efforts to block malware from play store, malicious applications still find ways to trick android anti-malware and poisoning tools.
- What is Malware Joker? How to fight Malware Joker?joker malware is another threat to your privacy and sensitive information. recently, it attacked android mobile devices globally, resulting in the need to remove some applications from the google play store.
- Google founded the App Defense Alliance, which will have to bypass more censorship rounds before appearing on the Play Storerecently, google has partnered with other security companies to form an alliance to ensure the safety of the play store app store.
- Malware and user security bugs are found in top free VPN applicationsfor every five applications listed in the top 150 free android vpn apps on google's play store, one is flagged as a potential source of malware.
- The reason why you should only download the app from Play Store and App Storedo you have a habit of installing applications from a third-party app store? so stop this action immediately and switch to download the app from play store and app store to make sure you get the latest updates and improve the privacy of your personal information. here are 3 reasons you should not trust too many applications from third-party app stores.
- Deep new computer: unexpectedly simple?security companies have just warned of a new worm worm spreading strongly on the internet.
- Asia: 26 types of viruses are spreading strongly!computer users in asian countries have been warned about 26 lines of computer viruses that are deep within rontkbr.gen spreading throughout the region via email.
- The new worm attacked AIM and caused heavy damagea security company has just warned of a new computer worm that is spreading strongly through aol's aim instant messaging application and causes more damage than imagined.
- What is Clipper Malware? How does it affect Android users?on january 8, 2019, users saw the first version of clipper malware on google play store. it has disguised as a harmless application to trick all downloads, then start redirecting electronic money to the owner of the malware.
Attack the network
- The 'gang' behind the Sodinokibi malware began auctioning celebrity data on the dark web
- Hackers can modify Safari on macOS to steal user data
- Microsoft silently updated Windows 10 to patch 2 serious security holes
- Hide malicious code in Windows logs file to attack computers, new ways of attack by hackers
- Google Alert is being used to spread malicious code
- Warning: DDoS attacks are becoming more dangerous both in scale and complexity
The 'gang' behind the Sodinokibi malware began auctioning celebrity data on the dark web
Hackers can modify Safari on macOS to steal user data
Microsoft silently updated Windows 10 to patch 2 serious security holes
Hide malicious code in Windows logs file to attack computers, new ways of attack by hackers
Google Alert is being used to spread malicious code
Warning: DDoS attacks are becoming more dangerous both in scale and complexity