Malware, short for malicious software, is an umbrella term used to refer to a variety of forms of hostile or intrusive software, including computer viruses, worms, trojan horses, ransomware, spyware, adware, scareware, and other malicious programs. It can take the form of executable code, scripts, active content, and other software.
Malware is defined by its malicious intent, acting against the requirements of the computer user – and so does not include software that causes unintentional harm due to some deficiency.
Software such as anti-virus and firewalls are used to protect against activity identified as malicious, and to recover from attacks.
Malware can be of Different Types ->
- Viruses
- Trojan horses
- Rootkits
- Backdoors
- Evasion
What is Judy Malware?
Judy’ an Android based malware has infected over 36.5 million users across the globe. One major reason why the malware could spread to such monstrous proportions is that it jumped Google’s own security feature called ‘bouncer’.
A dozen apps had the infected bug but Google had consistently removed most of them. However, one of these applications stayed in the hiding for a good one year before it was discovered by Google’s security net.
| Judy! |
A security firm, the malware Judy attacked most devices in the form of simple fashion and cooking games. The malware went unnoticed because the infected payload was downloaded externally from a non-Google server, after the applications were installed. Once installed, the software used the infected phone to click on certain Google Ads to increase the revenue of the attacker.
The Checkpoint blog post stated, “the malware, dubbed “Judy”, is an auto-clicking adware which was found on 41 apps developed by a Korean company. The malware uses infected devices to generate large amounts of fraudulent clicks on advertisements, generating revenues for the perpetrators behind it.”
Considering that there are loopholes in Google’s operating system, users should be careful with their own downloads from the Play Store. The security firm has launched a list of applications that had been infected by the malware. If your device is one of them, the only option left for you would be to back up your essential data and format the device.
The security firm claims that spread of the malware is still not confirmed as the ‘Judy’ has an extensive list of applications which hasn’t entirely been covered in Checkpoint’s analysis.
Google Play Store has taken down most of the concerned applications which were published under a Korean developer Enistudio. However, the malware was also found in a few other applications published under the name of different developers.
The report stated, “We also found several apps containing the malware, which were developed by other developers on Google Play. The connection between the two campaigns remains unclear, and it is possible that one borrowed code from the other, knowingly or unknowingly.”
How to protect yourself against Judy and other app malware
An Android tablet or phone will only have been infected by Judy if one of the apps was downloaded. Checkpoint has published the names of all the affected apps as part of its blog post, found in Appendix 1 and Appendix 2. If you have any of the apps on your phone, they should be deleted immediately – if they haven’t already been automatically removed.
Malware isn’t new on the Google Play Store, but the company has done a lot in recent years to curb it being inserted in the apps the store hosts. In 2012, Google introduced project ‘Bouncer’ that automatically scans products uploaded and blocks software that may be malicious. Despite this, malware does slip through the cracks.
In addition, Google Play Protect automatically checks apps before they are downloaded and will remove harmful apps from devices. The feature, which can be accessed through the Google Play Store’s app menu, will provide information about the status of a device.
Other ways to help prevent infection include using a VPN for browsing, checking app permissions when they are downloaded, and mobile security software. It is also important to regularly update any apps and operating systems to the latest versions.
You can also check out our guide to the best Android security apps to help keep your phone and tablet safe.
Though the app made it to more than 36.5 million android devices, so far there has been no evidence of any data being compromised on the infected devices. There have been previous instances where malwares like these have successfully cleared Google’s screening process; one of the downsides of operating on an open operating system.
It may happen that the apps you finding on play store appear to be real not fishy and may have millions of download but be safe it may have Judy Malware..
The best solution to is ->
- Install A Mobile Antivirus…
- Do regular Scans
- Check comments on that app on playstore
*Always prefer a renowned and paid anivirus
Cyber Journal 