- Researchers at Pradeo discovered Joker malware on an app called Colour message on the Google Play Store.
- The app has been downloaded more than 5 lakh times on the Play Store.
- Google Play Store has banned the app from the store.
Joker malware has been discovered in an Android-based app called Color Message and has more than 500,000 downloads on the Play Store.
The latest Joker malware was found in `Color Message’, a messaging-focused app that was subsequently removed from the official app marketplace. It has also been observed simulating clicks to make revenue from malicious ads and connecting to servers located in Russia.
Cybersecurity researchers at Pradeo discovered the malware. The app had been downloaded 500,000 times before being removed from the Google Play Store.
Joker was identified in 2017 and has been a notorious fleece wear infamous for carrying out various malicious activities, including billing fraud, intercepting SMS messages and contact details.
What is a Color message app?
The Color message app has more than 500,000 downloads on the Play Store and claims to make your SMS texting more fun with new emojis. The researchers discovered that this camouflaged app is infected with Joker Malware.
“We is [sic] committed to ensuring that the app is as useful and efficient as possible,” the developers behind Color Message state in their terms and conditions. “For that reason, we reserve the right to make changes to the app or to charge for its services, at any time and for any reason. We will never charge you for the app or its services without making it very clear to you exactly what you’re paying for.”
New actions added in Joker malware
- This version of Joker infection has added more actions compared to the previous Joker infections,
- It can access users’ contact info and exfiltrate it across the network.
- The application can hide its icon once installed, making it difficult to remove.
- It uses mobile phones to simulate clicks to generate malicious ads and connect to Russian servers.
What do you need to do?
Even though the app has been removed from the app store, it doesn’t mean it has been removed from third-party sites. If you have downloaded the app, make sure you uninstall it from your device. You can open your Google Play Store then head towards Menu, where you will get the My Apps & Games option. Select the Color Message app and choose to uninstall.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?
The post Joker malware; 500,000 Android users downloaded this malicious app appeared first on SecureReading.
This content was originally published here.