If you have been keeping track of different malware attacks, you might already be aware of the “Joker Malware.” Joker Malware was first found in 2017, and since then, it’s affected over 1,700 different applications in play store and google has removed all of them.
This malware was in the news recently. In September of 2019, this malware had affected several play store apps and caused some serious trouble to all the android users.
Researchers say that small changes have been made to the code of this same malware, and due to this, it was able to bypass all the security features of the play store and enter the devices of general users.
What does this Joker Malware do?
This time the Joker Malware has adopted an old technique from the conventional PC threat landscape to avoid detection by Google. This time around, the malware can download additional different malware into your device and can also buy many premium services available for users without your consent. To do this, it is using two major components. These components are: Notification Listener service and dynamic dex file loaded from the C&C server.
“The new method is much more complex compared to the process of the original Joker malware. It requires for one .dex file to read a manifest file and then start decoding the payload. After the payload is decoded, it then loads a new .dex file and then infects the device,.” Lalit Wadhwa, an Android app developer at Jungle Works, told indianexpress.com.
Which apps must you uninstall immediately?
The 11 apps removed by the play store are namely:-
- com.cheery.message.sendsms (two different instances)
If you still have any of these apps on your phones, uninstall them immediately.
What else should you do?
These types of malware and virus attacks are becoming more and more common. A few weeks earlier, also we had seen a similar spyware attack on Google Chrome, which put millions of users under risk. To put into numbers, this spyware had put 32 million Chrome users under jeopardy because of the different Chrome extensions. All these malicious extensions were free to download and were commonly used by many users. After the revelation was made by Awake Security, as per a report by Reuters, Google removed over 70 malicious extensions off the Web Store that violated policies.
With all this going, all we can do is have good anti-virus software installed on all our devices and try to stay away from all unknown software and extensions which can be malicious. We all should also make it a habit of checking our active recurring premium services list for any unwanted subscriptions.
We all generally are careless and do not pay attention to our credit card and debit card statements. We all should particularly allot time and check all our account statement’s once in a while for any unwanted deductions of money and solve the issue regarding it immediately, instead of blaming others later.
Do you want to publish on Apple News, Google News, and more? Join our writing community, improve your writing skills, and be read by hundreds of thousands around the world!