The ‘Joker’ malware grabbed headlines after it infected a plethora of devices globally. It resulted in the loss of sensitive information from users on whose devices the malware had infected.
Google removed eleven Apps from its Play Store for spreading the malware. But what is the Joker malware and how does it infect your device? Here is how it does it. The malware also steals money from users by subscribing to premium services without their consent.
Authentications such as OTPs (one time passwords) are obtained by stealing SMS information. The user only gets to know of the money deduction when they are alerted about transactions on their cards.
While Google has strict measures in place to check for malware such as this, the Joker managed to get past the stringent security measures by tweaking its codes.
This allowed it to hide behind legitimate apps. This helped it avoid detection by Google.
The apps that Google booted:
1. All Good PDF Scanner
2. Mint Leaf Message-Your Private Message
3. Unique Keyboard Fancy Fonts & Free Emoticons
4. Tangram App Lock
5. Direct Messenger
6. Private SMS
7. One Sentence Translator Multifunctional Translator
8. Style Photo Collage
9. Meticulous Scanner
10. Desire Translate
11. Talent Photo Editor Blur focus
12. Care Message
13. Part Message
14. Paper Doc Scanner
15. Blue Scanner
16. Hummingbird PDF Converter Photo to PDF
17. All Good PDF Scanner
18. com.imagecompress.android
19. com.relax.relaxation.androidsms
20. com.file.recovefiles
21. com.training.memorygame
22. Push Message- Texting & SMS
23. Fingertip GameBox
24. com.contact.withme.texts
25. com.cheery.message.sendsms (two different instances)
26. com.LPlocker.lockapps
27. Safety AppLock
28. Emoji Wallpaper
29. com.hmvoice.friendsms
30. com.peason.lovinglovemessage
31. com.remindme.alram
32. Convenient Scanner 2
33. Separate Doc Scanner