Story image

Malicious apps discovered on Google Play - some lurking for more than a year

30 May 17

Check Point, a security software company, has revealed that their researchers discovered another widespread malware campaign on the official Google app store, Google Play.

The malware, dubbed “Judy”, is an auto-clicking adware which was discovered on 41 apps developed by a Korean company. The malware uses infected devices to generate large amounts of fraudulent clicks on advertisements, resulting in generated revenue for the companies behind the ads.

The malicious apps reached a whopping amount of downloads, between 4.5 million and 18.5 million. Some of the apps discovered had been residents on Google Play for several years, but had all been very recently updated. Because it is unknown how long the malicious code existed in the apps, the true spread of the malware can’t truly be known.

Also found were several apps containing the malware which had been developed by other developers on Google Play. At the moment the connection between the two campaigns remains unclear, but it is entirely possible that one borrowed code from the other either knowingly or not.

The oldest app of this second campaign was last updated in April 2016, meaning that the malicious code was hidden, undetected, on Google Play for more than a year.

These apps also had a large amount of downloads (between 4 and 18 million), meaning the total spread of the malware across both campaigns may have reached between 8.5 and 36.5 million users.

Similar to previous malware which infiltrated Google Play, such as FalseGuide and Skinner, Judy relies on the communication with its Command and Control server (C&C) for its operation. After Check Point notified Google about this threat, the apps were quickly removed from the Play store.

Valve stops Steam Link hardware sales; promotes Android app instead
Valve announced that its supply of Steam Link hardware has sold out – and by the looks of it, it won’t be making any more.
Hands-on review: Spyro Reignited Trilogy brings back the PSOne icon
Spyro Reignited Trilogy is a great remake that features new school graphics with old fashioned style of gameplay.
Don't let criminals ruin your online shopping
It’s that time of year again. Not only have New Zealanders developed a bit of a taste for sales like black Friday and cyber Monday, the holiday season is well upon us.
Student app Niesh gets $1m funding windfall
“We’re a data driven company, and we’re using what we know to benefit students and the companies giving them rewards, discounts, and jobs,” explains co-founder Jae Yoo.  
NZ-grown fitness app draws on augmented reality
“I started working on creating an AR app over a year ago starting with just fitness. But as we moved on, it made sense to add in special features."
NZ's online merchants can now offer Google Pay
With Google Pay, customers will be able to speed through checkout with just a few clicks."
Hands-on review: Intel Core i7 8086K Limited Edition
Whilst I’ve seen commemorative coins and stamps, I’ve never seen a commemorative CPU. Intel’s Core i7 8086K is exactly that.
Hands-on review: Logitech G1 Pro Gaming Headphones and Mouse
For the serious gamer, this kit will have you happily spreading mayhem in glorious surround sound.