WAV audio files hijacked to hide malicious code -
Geeko
The infamous Joker malware is once again talked about.
Since its appearance in 2017, this malicious software regularly points the tip of its nose in the Play Store, hiding in applications that are at first glance safe.
Zscaler security researchers recently spotted the Joker's trail in no less than 17 apps on the Play Store.
They account for more than 120,000 downloads from the Google application store, potentially claiming as many victims.
The Joker's goal is still the same: to subscribe its victims to premium mobile services without their knowledge.
It also seeks to siphon the SMS and address book of these targets in order to spread and increase its number of victims.
In some cases, it can also empty the bank accounts of its victims.
This time again, the infected applications are diverse and varied.
We thus find the Joker within applications of PDF converters, scanners, photo editors, translator or even virtual keyboards.
Relatively simple applications that do not normally require special authorization to operate, except in the case of infected apps.
It is an effect that should put the chip in the ear to the users.
It is not normal for a PDF converter app to have access to SMS or call log, for example.
Just as a scanner or photo editor application can access the address book.
These privilege requests are clues to the dangerousness of apps.
Here is the list of infected applications:
All Good PDF Scanner
Mint Leaf Message-Your Private Message
Unique Keyboard - Fancy Fonts & Free Emoticons
Tangram App Lock
Direct Messenger
Private SMS
One Sentence Translator - Multifunctional Translator
Photo Collage Style
Meticulous Scanner
Desire Translate
Talent Photo Editor - Blur focus
Care Message
Share Message
Paper Doc Scanner
Blue Scanner
Hummingbird PDF Converter - Photo to PDF
All Good PDF Scanner
Apps to uninstall urgently
If you downloaded any of these apps, uninstall it quickly and make sure there is no malware on your smartphone by running a virus scan.
The particularly persistent Joker malware has been making life difficult for Google for years.
It does not cease to override the protection measures of the Play Store.
The American firm had already indicated last January that it had removed more than 1,700 copies of the Trojan horse, recalls 01Net, without however managing to get rid of it.
The discovery by Zscaler researchers reminds us that it is important to be careful when installing an application on your smartphone, even when it is offered on the Play Store.
Extended privilege requests should alert you.
High-Tech
Coronavirus: Google Maps now maps the epidemic and areas of infection
High-Tech
Google releases security patch to fix 52 flaws in Android
Google
Application
Mobile app
Android
Smartphone
Bank account
Personal data
High-Tech
Cybersecurity