The security analysts at Pradeo security firm have recently detected that more than 500.000+ users were affected by the Joker malware that was detected on the Google Play store.
This time Joker malware targeted the users through a messaging application, Color Message. It’s a message personalizing app that claims to improve default text messages by adding emojis and several other personalizations.
This malicious application is infected with Joker malware and here the most critical thing that has been discovered is that this malicious app connects to Russian servers.
Malicious app – Color Message
Here we have mentioned all the key details of the Color Message app below:-
- Google Play: https://play.google.com/store/apps/details?id=com.guo.smscolor.amessage
- Description: Joker is categorized as Fleeceware.
- Package: com.guo.smscolor.amessage
- Version 1.3
- 500.000+ installs
However, Google has already deleted this application from the Play Store, but, it doesn’t mean that users are now safe, since, it has already infected more than half a million users.
This malicious app offers its operators to execute the following primary actions that we have mentioned below:-
- Access users’ contact lists.
- Subscribe victims to the unwanted premium paid services without their knowledge.
- Simulate clicks.
So, the users who have installed the app on their Android smartphones are still highly vulnerable, as the threat actors could make them sign up for expensive services that you don’t need or want without their knowledge.
Apart from this, all the affected users have flooded the comment box with several complaints.
Previously affected apps
Here are the apps that are already exploited by the Joker malware mentioned below:-
Safety AppLock
- Package: applock.safety.protect.apps
- Version: 6.5
- Installs: 10.000+
Convenient Scanner 2
- Package: com.convenient.scanner.tb
- Version: 14.0.4
- Installs: 100.000+
Push Message-Texting&SMS
- Package: sms.pushmessage.messaging
- Version: 4.13
- Installs: 10.000+
Emoji Wallpaper
- Package: tw.hdwallpaperthemes.emoji.wallpaper
- Version: 14.3
- Installs: 10.000+
Separate Doc Scanner
- Package: sk.pdf.separatedoc.scanner
- Version: 2.0.74
- Installs: 50.000+
Fingertip GameBox
- Package: com.theone.finger.games
- Version: 3.0.7
- Installs: 1000+
The primary efficiency of Joker malware is its fewer uses of the least amount of code, and this makes this malware stealthy and sophisticated due to which the security solutions find it difficult to detect it.
The experts have strongly recommended users immediately delete this malicious app from their Android devices to clean the device and prevent fraudulent activities.
You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and hacking news updates.
