In July, Google removed 11 apps containing malware called the Play Store Joker. Now researchers have identified six other applications that are included in the list of applications that contain malicious malware.
Google has removed six additional apps from the Play Store. So there will be no new downloads. However, users who have already downloaded the apps will need to remove them from their smartphones. Cybersecurity firm Predio reports that these six apps had nearly 200,000 downloads before being removed from the App Store.
These apps may seem legitimate but have the ability to insert files into a user’s device by downloading malware. This malware subscribes the user to a premium service without their permission.
In July, checkpoint researchers discovered a new variant of the Joker malware on Google Play. Researchers have been able to identify 11 similar applications with these suspicious packages.
Here is a revised list of packages that have been found to contain Joker malware:
- com.imagecompress.android
- com.relax.relaxation.androidsms
- com.file.recovefiles
- com.training.memorygame
- Push Message- Texting & SMS
- Fingertip GameBox
- com.contact.withme.texts
- com.cheery.message.sendsms (two different instances)
- com.LPlocker.lockapps
- Safety AppLock
- Emoji Wallpaper
- com.hmvoice.friendsms
- com.peason.lovinglovemessage
- com.remindme.alram
- Convenient Scanner 2
- Separate Doc Scanner
Counterpoint researchers suggest that users check their devices and uninstall them immediately for these applications. The customer has to go through their credit card bills to check for any unintentional subscription. If they find any discrepancies, they may opt-out of the subscription to be safe from future discounts. The user is asked to install a security solution if there are any problems in the future. Click here to read a detailed report on what caused the malware to enter the Play Store.
Since detecting malware is very tricky, it is expected to come back in some applications. Users can place tabs on their credit card statements to make sure they are not victims of any of these applications.