Skip to main content

Judy Malware Attacks 36.5 Million Phones — One Of The Largest Malware Campaigns on Google Play

Image
By

adware judy malware
A notorious adware named Judy had managed to break Google Play Store’s security mechanism, affecting about 36.5 million users. Judy malware was spread via 41 popular apps created by a Korean company and tricked users into clicking banner ads to generate illegal revenue. After Check Point reached out to Google, the company removed the apps
from Play Store.
Last week, the Check Point researchers uncovered a widespread malware campaign on Google’s official app store. The notorious malware, called Judy, was found on 41 popular apps developed by a fishy Korean company.
The malware is basically an adware that uses tons of fake clicks on the advertisements for generating revenue. As the agent apps became massively popular, the number of affected users might had reached as much as 36.5 million customers.
Some affected apps had existed on Play Store for several years but they were recently updated. The oldest app of the second campaign was updated in April 2016. As per Check Point’s report, it’s unclear how long the rogue code existed in the app.
Image: Check Point
The security researchers also found many other apps that contained Judy malware. The connection between the two campaigns is unclear. It’s possible that one campaign got the code from other.

How does Judy Malware operate?

judy malware android
Image: Check Point
For bypassing Google Play’s protection, Bouncer, the coders of Judy malware created an app that looked innocent. After arriving on a user’s smartphones, the malware established a connection with the C&C server and downloaded the malicious payload, which included JS code, user-agent string, and URLs controlled by malware author.
After this, Judy opened the malicious URL that imitated a PC browser in a hidden web page. It was followed by another redirection that loaded Google Ads and generated illegitimate clicks.
You can find the complete list of Judy malware apps on Check Point blog. If you’re having any of these apps installed on your Android phone, uninstall it and use some security solution to clean your phone.
Did you find this story on Judy malware interesting? Don’t forget to share your feedback with us.
Labels:

Comments

Post a Comment

Follow Us

WHAT'S HOT

Would you remain in a violent and abusive marriage for love?

By
You married someone you trusted, and you gave yourself to that person. How could it be that the person you trusted with your life now acts like the person who could take your life? A quick scan of the Internet reveals that Twenty-five percent of adult women say they have experienced violence at
Post a Comment
Continue Reading »

Russian Hackers Used Kaspersky Software To Steal NSA Secrets And Code

By
According to a  report from WSJ , NSA’s classified data, which wasn’t supposed to leave the facility’s perimeter where a contractor worked, was stolen by Russian hackers. This incident
1 comment
Continue Reading »

How To Connect Android or iOS Phone To Windows 10

By
The  Continue on PC  feature is currently available to Windows Insiders, but it’ll arrive for regular users once the update starts landing on their PCs. If you’re running an Insider build, you can use the steps mentioned in this post to connect your phone to Windows 10 PC.
1 comment
Continue Reading »

Google Announces New Camera Called Google Clips

By
The core of the camera is AI engine which does the processing part and gets smarter over time. Clips can detect people and subjects using machine learning that happens on the system itself.
Post a Comment
Continue Reading »