Judy Malware Attacks 36.5 Million Phones — One Of The Largest Malware Campaigns on Google Play

A notorious adware named Judy had managed to break Google Play Store’s security mechanism, affecting about 36.5 million users. Judy malware was spread via 41 popular apps created by a Korean company and tricked users into clicking banner ads to generate illegal revenue. After Check Point reached out to Google, the company removed the apps

from Play Store.
Last week, the Check Point researchers uncovered a widespread malware campaign on Google’s official app store. The notorious malware, called Judy, was found on 41 popular apps developed by a fishy Korean company.

The malware is basically an adware that uses tons of fake clicks on the advertisements for generating revenue. As the agent apps became massively popular, the number of affected users might had reached as much as 36.5 million customers.

Some affected apps had existed on Play Store for several years but they were recently updated. The oldest app of the second campaign was updated in April 2016. As per Check Point’s report, it’s unclear how long the rogue code existed in the app.

The security researchers also found many other apps that contained Judy malware. The connection between the two campaigns is unclear. It’s possible that one campaign got the code from other.

How does Judy Malware operate?

judy malware android — Image: Check Point

For bypassing Google Play’s protection, Bouncer, the coders of Judy malware created an app that looked innocent. After arriving on a user’s smartphones, the malware established a connection with the C&C server and downloaded the malicious payload, which included JS code, user-agent string, and URLs controlled by malware author.

After this, Judy opened the malicious URL that imitated a PC browser in a hidden web page. It was followed by another redirection that loaded Google Ads and generated illegitimate clicks.

You can find the complete list of Judy malware apps on Check Point blog. If you’re having any of these apps installed on your Android phone, uninstall it and use some security solution to clean your phone.

Did you find this story on Judy malware interesting? Don’t forget to share your feedback with us.

FAISS: Facebook Just Released A New Open Source Library For Clustering Big Data

FAISS is an open-source library released by Facebook for similarity search and clustering high-dimensional data. This library finds application in complex datasets like images and videos which could not fit in RAM all at once.

Best Gaming Linux Distros You Need To Try In 2017

Gaming on Linux scene is improving each year with better hardware support and increasing support from game developers. Apart from established distros like Ubuntu and Arch Linux, gamers are using gaming Linux distros like Steam OS to get a better experience. The other It’s gaming operating systems are Sparky Linux – Gameover

Microsoft Edge Web Browser Launched For iOS And Android — Download Here

Edge web browser for iOS and Android are initially launched in beta. With this release, the company wishes to bring a Windows 10-like browsing experience to the mobile devices as well.

'Danfo' driver kills heavily pregnant woman, fish seller in Lagos (photos)

A danfo with the registration number, KTW 479 XQ descending Maryland under bridge this afternoon somersaulted leaving two women completely burnt while four other occupants of the bus sustained injuries. One of the victims, a heavily pregnant woman was seriously burnt before help could come her way. The two women were believed to be fish sellers coming from Oyingbo where they had gone to buy fish. The danfo was heading towards Ikeja when the incident happened. According to eyewitness account, the danfo was trying to overtake a Toyota Highland, which was equally speedily descending the Maryland Bridge when it somersaulted and caught fire instantly.

9JABREEZELAND

Search This Blog