• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
over 500,000 android users downloaded a new joker malware app

Over 500,000 Android Users Downloaded a New Joker Malware App from Play Store

You are here: Home / General Cyber Security News / Over 500,000 Android Users Downloaded a New Joker Malware App from Play Store
December 20, 2021

A destructive Android app with a lot more than 500,000 downloads from the Google Perform application retail outlet has been located hosting malware that stealthily exfiltrates users’ make contact with lists to an attacker-managed server and indicators up users to undesirable paid out high quality subscriptions without having their know-how.

The most up-to-date Joker malware was uncovered in a messaging-centered app named Colour Information (“com.guo.smscolor.amessage”), which has considering that been taken off from the official application marketplace. In addition, it has been observed simulating clicks in purchase to make earnings from malicious ads and connecting to servers positioned in Russia.

Automatic GitHub Backups

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


Color Concept “accesses users’ get in touch with list and exfiltrates it around the network [and] immediately subscribes to unwanted compensated solutions,” mobile security agency Pradeo mentioned. “To make it complicated to be eradicated, the software has the ability to hides it icon the moment set up.”

Android Malware

“We is [sic] fully commited to guaranteeing that the application is as practical and efficient as feasible,” the builders guiding Color Concept point out in their phrases and problems. “For that motive, we reserve the proper to make alterations to the application or to charge for its services, at any time and for any reason. We will never cost you for the app or its products and services without having building it pretty obvious to you exactly what you might be shelling out for.”

Prevent Data Breaches

Joker, given that its discovery in 2017, has been a notorious fleeceware infamous for carrying out an array of malicious actions, including billing fraud and intercepting SMS messages, call facts, and system data unbeknownst to customers.

The rogue apps have ongoing to skirt Google Engage in protections employing a barrage of evasion practices to the point that Android’s Security and Privacy Staff claimed the malware authors “have at some level utilized just about every single cloaking and obfuscation method below the sun in an try to go undetected.”

Discovered this report attention-grabbing? Comply with THN on Fb, Twitter  and LinkedIn to read through much more special content material we write-up.


Some pieces of this posting are sourced from:
thehackernews.com

Previous Post: «new local attack vector expands the attack surface of log4j New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability
Next Post: Experts Discover Backdoor Deployed on the U.S. Federal Agency’s Network experts discover backdoor deployed on the u.s. federal agency's network»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • New York Man Sentenced to 4 Years in Transnational Cybercrime Scheme
  • Microsoft Finds Critical Bugs in Pre-Installed Apps on Millions of Android Devices
  • CISA Publishes 5G Security Evaluation Process Plan
  • Twitter to Pay $150m Fine to Resolve Data Privacy Violations
  • Experts Detail New RCE Vulnerability Affecting Google Chrome Dev Channel
  • Nearly 100,000 NPM Users’ Credentials Stolen in GitHub OAuth Breach
  • Russian Hackers Believed to Be Behind Leak of Hard Brexit Plans
  • The Myths of Ransomware Attacks and How To Mitigate Risk
  • Attackers Can Use Electromagnetic Signals to Control Touch Screens Remotely
  • UK Government Seeks Views to Bolster the Nation’s Data Security

Copyright © TheCyberSecurity.News, All Rights Reserved.