Saturday, February 20, 11:05
Home security Google Play Store: 17 more Joker malware applications removed

Google Play Store: 17 more Joker malware applications removed

Η Google remove others 17 Android applications from the Play Store. The applications were infected with Joker malware and were identified by researchers security of Zscaler.

Play Store

"This spyware is designed to steal SMS messages, contact lists and device information while also secretly recording victim in premium WAP services (wireless application protocol)Said researcher Viral Gandhi.

The 17 malware downloaded to the Play Store had a total of over 120.000 downloads.

The names of the 17 applications are:

  • All Good PDF Scanner
  • Mint Leaf Message-Your Private Message
  • Unique Keyboard - Fancy Fonts & Free Emoticons
  • Tangram App Lock
  • Direct Messenger
  • Private SMS
  • One Sentence Translator - Multifunctional Translator
  • Style Photo Collage
  • Meticulous Scanner
  • Desire Translate
  • Talent Photo Editor - Blur focus
  • Care Message
  • Part Message
  • Paper Doc Scanner
  • Blue Scanner
  • Hummingbird PDF Converter - Photo to PDF
  • All Good PDF Scanner

Once Google has been notified of the malware, it has followed the prescribed procedures. Remove the apps from the Play Store and use it service Play Protect to disable applications on infected Appliances. However, users must also remove applications from their devices.

Joker malware Google

Many Joker malware applications have been found in the Play Store

Is third time that Google removes applications infected with Joker malware.

At the beginning of the month, h company removed six other such applications, which had been reported by researchers security of Pradeo.

In July, Google was informed of similar applications by its security researchers Anquanke. This batch has been active since March and has managed to infect millions Appliances.

In most cases, these applications manage to bypass Google's defenses and reach the Play Store, using a technique called "droppers“, Where the victim's device is infected in several stages. The technique is quite simple, but it manages to overcome the obstacles of Google.

Initially, malware creators clone the operation of a legitimate application and upload it to the Play Store. This application is fully functional, asks for many permissions to access sensitive data, but does not perform malicious activity when running for the first time.

Malware starts after hours or even days, so Google security scans do not receive the malicious code, allowing the application to go to the Play Store.

But malicious applications eventually download and install other components or applications on the device. These items contain the Joker malware or other malicious software.

The Joker malware, which Google internally calls "Bread", Relies heavily on the dropper technique. In this way he has managed to penetrate the Play Store many times, maybe more times than any other malware.

In January, Google published a blog post describing it Joker malware as one of the most persistent and advanced threats which has faced in recent years. Google said security teams have removed more than 1.700 apps from the Play Store since 2017. But, apps with the Joker are very popular and have also been reported in stores Android third-party applications.

Anquanke's investigators said they have located more than 13.000 samples of Joker malware since the malware was discovered in December 2016.

Defending yourself from the Joker is tough, but the users can be protected to some degree if they are careful with the applications they download. For example, should avoid applications that require access to many data and look at other users' ratings.

Other malicious applications

According to ZDNet, the Bitdefender reported a group of malicious applications to Google's security team. Some of these apps are still available in the Play Store. The researchers did not name the applications but only them accounts of developers of which were uploaded to the Play Store. The users who have installed applications from these developers should remove them immediately.

  • New
  • Piastos
  • imirova91
  • Progster
  • StokeGroove
  • VolkavStune


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortress
Pursue Your Dreams & Live!


Microsoft: Office 2021 / Office LTSC coming in the second half of 2021

Microsoft announced that the Microsoft Office Long Term Service Channel (LTSC) and Office 2021 will be released in 2021, for ...

How to quickly create QR codes with Bing

If you ever need to create a QR code, but you do not know how, Microsoft has an easy-to-use tool available in any program ...

Brave: Onion addresses leaked to DNS traffic

The Tor function included in the Brave web browser, allows users to access .onion dark web domains within ...

What are the 6 most known attacks on gaming companies?

A few days ago, the gaming company Big Huge Games informed the players that it was the victim of an attack, which affected its data ...

Xbox gift cards are sold at a 10% discount on Amazon

Xbox owners can save some money on games, add-ons, subscriptions and more if they buy Xbox gift cards at ...

Perseverance: NASA spacecraft lands on Mars!

The spacecraft "Perseverance" successfully landed yesterday, shortly before 11 pm Greek time on Mars. Aim of this mission of ...

YouTube: You can play 4K videos on devices with low resolution screens

Youtube application on Android allows you to play videos up to 4K resolution. All you need is a phone with ...

Top positions Software Engineering and coding skills for 2021

Due to COVID-19, recruitment efforts and employment opportunities fell sharply last year. However, the technology industry has proven to be more resilient ...

Phishing emails: How to recognize them and how to protect yourself? Το phishing είναι ίσως η μεγαλύτερη απειλή στον κυβερνοχώρο εδώ και περισσότερα από πέντε χρόνια. Γι΄...

US and UK condemn Facebook for blocking Australia

Politicians, news agents and civil rights groups in the UK and US have targeted Facebook for its decision to ...