'Joker' malware secretly charges Android owners' credit cards
This new Android malware may be the most twisted yet.
An interesting new type of malware has been uncovered, coded within two dozen Android apps that have accumulated hundreds of thousands of downloads in the Google Play store.
Android users who downloaded any of the apps embedded with this malware, dubbed “the Joker,” will need to check their credit card bills. Joker’s purpose, once deployed, is to sign up its victims to subscription services without their knowledge or consent. This new malware was first detected by CSIS Security Group malware analyst Aleksejs Kuprins, who has been monitoring the malicious code and penned a detailed analysison Joker.
SEE ALSO:Here’s how malicious Android apps are sneaking malware onto your phoneAccording to Kuprins, the malware “delivers a second stage component, which silently simulates the interaction with advertisement websites, steals the victim’s SMS messages, the contact list and device info.” Basically, any user that was infected by Joker possibly had their phone’s texts and contact list stolen, too.
But the simulated interactions are where Joker gets a bit more twisted.
“The automated interaction with the advertisement websites includes simulation of clicks and entering of the authorization codes for premium service subscriptions,” writes Kuprins. “For example, in Denmark, Joker can silently sign the victim up for a 50 DKK/week service (roughly ~6,71 EUR). This strategy works by automating the necessary interaction with the premium offer’s webpage, entering the operator’s offer code, then waiting for a SMS message with a confirmation code and extracting it using regular expressions. Finally, the Joker submits the extracted code to the offer’s webpage, in order to authorize the premium subscription.”
According to Lifehacker, the list of apps harboring the Joker malware include Advocate Wallpaper, Age Face, Altar Message, Antivirus Security - Security Scan, Beach Camera, Board picture editing, Certain Wallpaper, Climate SMS, Collate Face Scanner, Cute Camera, Dazzle Wallpaper, Declare Message, Display Camera, Great VPN, Humour Camera, Ignite Clean, Leaf Face Scanner, Mini Camera, Print Plant scan, Rapid Face Scanner, Reward Clean, Ruddy SMS, Soby Camera, and Spark Wallpaper.
Kuprins says that in total, the 24 apps racked up more than 472,000 downloads in the Google Play store. The apps have since been removed. If a user has any of those apps on their phone, they should be deleted.
According to the report, the current iteration of Joker malware campaign appears to go back as far as June of this year. Kuprins notes that Google removed the apps before his security firm reached out to the company, so it appears that the tech giant has been monitoring the situation as well.
Malwarehas longbeen a problemplaguing Android devices. Facebook has even gone so far as to file a lawsuitlast month against one developer, whose malware-ridden Android app engaged in click fraud on the social media company’s ad network.
While other recent Android-targeted malware campaigns have had broaderreach, such as “Agent Smith,”which has infected 25 million devices, Joker’s automated subscription attack certainly makes it among the more interesting.
Featured Video For You
The computer worm that changed the world
(责任编辑:关于我们)
- Project 2025 Comstock Act: Trump’s new abortion comment exposed.
- 高质量地做好人大新闻宣传工作
- Chrissy Teigen teamed up with Arthur to throw shade at John Legend's Easter outfit
- 桃花朵朵开 天全小记者采访忙
- 阳江村K开麦,阳西3人晋级!
- How to watch 'Kinds of Kindness': When is it streaming?
- 桃花朵朵开 天全小记者采访忙
- S. Korea mulls raising N. Korea's GPS jamming attacks with UN bodies
- Milan draws first blood in CL derby with Napoli
- Listeners encouraged to go wild with Le Sserafim's 4th EP
- Medvedev says balance key as he adapts game for clay
- Milan draws first blood in CL derby with Napoli
- 伽师新梅,缘何称“新”?
-
Essential Apps to Install on your Windows PC or Mac
You just bought a new laptop, built a new desktop PC, or are simply clean installing on a new solid ...[详细] -
86% of public approves of Park’s impeachment
Responding to the Constitutional Court’s decision to remove Park Geun-hye from power, 86 percent of ...[详细] -
市民声音:“有些水果比肉还贵”近日,有市民向记者反映水果价格涨得太高。“3月底才6元多一斤的香梨,现在突然涨到了7.9元一斤,还是超市打特价后的价格。”市民刘婆婆说,她本来打算买点水果,但看到香梨涨价 ...[详细]
-
Instagram will pay researchers to find apps abusing its data
Instagram is getting serious about rooting out third-party apps that break its rules.The company ann ...[详细] -
Top 10 Most Significant Nvidia GPUs of All Time
Founded in 1993, Nvidia is a youngster when compared to other semiconductor companies. However, its ...[详细] -
Milan draws first blood in CL derby with Napoli
MILAN:AC Milan have the slenderest of advantages in their all-Italian Champions League quarter-final ...[详细] -
Twitter wants you to follow 'interests', instead of just people
Twitter just unveiled yet another experiment it's hoping will help make its service a more welcoming ...[详细] -
3rd protester dies as S. Korea braces for more rallies
South Korean police on Saturday braced for more violence between opponents and supporters of ousted ...[详细] -
现场观众驻足欣赏精美的蒙山窑瓷器用名山土,烧蒙山器,泡蒙山茶。8月24日,蒙山窑艺术馆开馆仪式在蒙顶山4A级旅游景区举行,一大批采用蒙顶山优质高岭土烧制的蒙山窑瓷器惊艳亮相,吸引了不少瓷器爱好者及游客 ...[详细]
-
Why Tai Chi needs more love from the tech world
March Mindfulnessis Mashable's series that examines the intersection of meditation practice and tech ...[详细]
- iPhone 16 Pro new color will reportedly be Desert Titanium
- Retro hipster style meets functional design in this old
- Instagram will pay researchers to find apps abusing its data
- Secretary Blinken affirms commitment to back US envoy for North Korean human rights
- Deceased K
- The internet is trolling United so hard right now
- Medvedev says balance key as he adapts game for clay