Google has confirmed that it’s removed 17 more Android apps from its Play Store, but that doesn’t mean all smartphone users can breath a sigh of relief. The banned applications were found to be filled with the dangerous “Joker” malware, which is capable of stealing SMS messages, entire contact lists, and device information as well as silently signing-up the victim for premium wireless application protocol (WAP) services.
WAP services can leave users with a nasty bill as it’s a mechanism to buy content from sites that is then charged directly to a mobile bill.
The offending apps were discovered by the team at Zsclaer. If you have any of them (listed below) on your device you need to delete them right now.
In a post on its blog, Zsclaer’s Viral Gandhi said: “Our Zscaler ThreatLabZ research team has been constantly monitoring the Joker malware. Recently, we have seen regular uploads of it onto the Google Play store. Once notified by us, the Google Android Security team took prompt action to remove the suspicious apps from the Google Play store. This prompted us to evaluate how Joker is so successful at getting around the Google Play vetting process. We identified 17 different samples regularly uploaded to Google Play in September 2020. There were a total of around 120,000 downloads for the identified malicious apps.”
Since it was first discovered back in 2016, the so-called Joker malware has appeared in roughly 13,000 apps. Protecting against Joker can be tougher than other malware, however, checking the permissions requested by an app is a surefire way of spotting anything software that’s looking for unnecessarily broad permissions, security experts say.
Source:Daily Express :: Tech Feed