Google ban more than 1,700 malicious apps from Play Store | Security

Google has removed more than 1,700 apps from the Play Store with Bread malware, also known as Joker, which could cause financial harm to victims. According to the company's official security blog, published Thursday, engineers have been monitoring malicious code activity since 2017, and have classified it as one of the most persistent threats in recent years.

READ: Malware apps have been downloaded over 2 billion times; know how to exclude

The difficulty of fighting the Joker is for two main reasons. First, because it adapts to Google Play Protect security updates, which makes identification difficult in many cases. Second, because the algorithm often works stealthily, applying techniques to keep it hidden most of the time.

Malware known as Joker made signatures on behalf of the victim. Photo: Rodrigo Fernandes / dnetcMalware known as Joker made signatures on behalf of the victim. Photo: Rodrigo Fernandes / dnetc

Malware known as Joker was signing on behalf of the victim Photo: Rodrigo Fernandes / dnetc

Want to buy cheap phones and notebooks? Meet the Compare dnetc

Like malware focused on financial fraud, it was not activated in countries that did not have SMS or similar subscription services to avoid detection. Also, according to the website The Next Web, Joker was not present in the early versions of the apps it used to act, which made it easier for them to approve on the Google Play Store before presenting malicious indications.

At first, Joker used the SMS technique to make content signatures in the name of the affected user himself, who was charged to his credit card account, resulting in financial loss.

Once Google closed the door to this strategy, the hackers behind Joker switched to WAP. They used infected devices to access payment pages through the so-called Wireless Application Protocol ("Wireless Application Protocol"). Thus, the charge was made directly to the user's phone bill.

Joker spread by SMS Photo: Luciana Maline / dnetcJoker spread by SMS Photo: Luciana Maline / dnetc

Joker spread by SMS Photo: Luciana Maline / dnetc

Malicious software has already been removed from the Play Store, and by this point, it is no longer possible to download Joker malware, according to Google. However, the warning is always worth not to download apps with dubious origin. Always look for programs from developers known or indicated by the online store.

O dnetc published in September 2019 a list of 24 apps that were proven to have Joker (or Bread) installed. If you made use of any of them, please uninstall it from your smartphone and review the subscription credentials of your mobile account to see if there are any improperly contracted services. Another important step is to enable dual authentication standards for app and subscription purchases.

How to Remove Virus on an Android Phone

How to Remove Virus on an Android Phone