Google has removed 11 apps from the Play Store which were infected with the notorious Joker malware. Google has been tracking these apps since 2017.
Check Point researchers discovered a new variant of the Joker malware that was present inside legitimate apps. These hackers found a way to get users to subscribe to premium services without their knowledge. Since hackers developed this old way of getting inside apps they could pass Google Play’s protections.
The Joker malware has been found in 11 apps on the Play Store. Check Point said that Google has removed all these apps from its app store. Android users who may have any of these apps installed should get them removed immediately. The list of apps detected include -
com.imagecompress.android
com.contact.withme.texts
com.hmvoice.friendsms
com.relax.relaxation.androidsms
com.cheery.message.sendsms (two different instances)
com.peason.lovinglovemessage
com.file.recovefiles
com.LPlocker.lockapps
com.remindme.alram
com.training.memorygame
Check Point added that despite Google Play’s security features, the Joker malware is still very tricky to detect. And it may very well make it back to the Play Store.
Earlier this year, Google released a report where it said that it had detected and removed 1,700 malicious “Bread” apps from the Play Store. These Bread apps are ones with the Joker malware.
Google said that these apps were removed even before users could download it. The Joker malware has however been lurking around for a long time with Google tracking such apps since 2017.