Home » Six more apps containing Joker malware removed from the Google Play Store

Six more apps containing Joker malware removed from the Google Play Store

by Raju Vernekar
0 comment 3 minutes read

By IT Correspondent
New Delhi, September 5:
Six more malicious apps containing Joker malware have been removed from the Google Play Store after being disclosed to Google by Singapore based Pradeo Pte Ltd, that the malware  has been plaguing Android users for the past three years.

The Google quoting researchers has stated that these six apps have combined total of 200,000 downloads and users who installed them should delete them. The sheer number of attempted submissions to the Play Store is one of the reasons it has remained so successful, with up to 23 different apps submitted a day during peak times.

Of the six apps uncovered as delivering Joker, one called ‘Convenient Scanner 2’ has been downloaded over 100,000 times alone, while ‘Separate Doc Scanner’ has been downloaded by 50,000 users. Another app, ‘Safety AppLock’, claims to ‘protect your privacy’ and has been installed 10,000 times by unfortunate victims who will eventually find that the malicious download harms, rather than protects, them. Besides two more apps have received 10,000 downloads each – ‘Push Message-Texting&SMS’ and ‘Emoji Wallpaper’, while one named Fingertip GameBox has been downloaded 1,000 times.

The six apps are just the latest in a long line of malicious downloads that the group behind Joker – also known as Bread – have attempted to sneak into the Play Store. As such the Google has urged users to remove any of these applications from their Android smartphone  immediately.

A previous blog post by Google’s Android security and privacy team describes Joker as one of the most persistent threats the Play Store faces, with the attackers behind it having “at some point used just about every cloaking and obfuscation technique under the sun in an attempt to go undetected”.  They also note that the sheer number of attempted submissions to the Play Store is one of the reasons it has remained so successful, with up to 23 different apps submitted a day during peak times.

Google has removed over 1,700 apps containing Joker malware from the Play Store since 2017, but it keeps re-emerging. In many cases, the malicious apps have been able to bypass the defences of the Play Store by submitting clean apps to begin with, only to add malicious functionalities at a later date.

Joker malware pretends to be a legitimate app in the Play Store but after installation conducts billing fraud by either sending SMS messages to a premium rate number or using the victim’s account to repeatedly make purchases using WAP billing, which also lines the pockets of Joker’s operators.

The activity occurs behind the scenes and without any input required from the user, meaning they often won’t find out that they’ve been scammed until they receive a phone bill full of additional charges. These apps are riddled with permission requests and submitted to Google Play by their developers. They get approved, published and installed by users. Once running on users’ devices, they automatically download malicious code. In many cases, the malicious apps have been able to bypass the defences of the Play Store by submitting clean apps to begin with, only to add malicious functionalities at a later date.

You may also like

Leave a Comment

ABOUT US

Imphal Times is a daily English newspaper published in Imphal and is registered with Registrar of the Newspapers for India with Regd. No MANENG/2013/51092

FOLLOW US ON IG

©2023 – All Right Reserved. Designed and Hosted by eManipur!

Adblock Detected

Please support us by disabling your AdBlocker extension from your browsers for our website.