The Judy Malware hits Millions of Android phones, Are you SAFE?
Judy, an auto-clicking adware, has been found on 41 apps by a Korean company.It has been found to be infecting millions of Android smartphones across the world just like the ‘WannaCry’ ransomeware holding computers at ransom.
According to security solutions firm Check Point, the malware -- Judy -- uses infected devices to generate large amounts of fraudulent clicks on advertisements, generating revenues for the developers behind these apps.
Unlike other malwares it is not stealing your data, but it is controlling the device to carry out fraudulent activities. Judy gets control of infected devices and relies on the communication with its Command and Control server (C&C) for its operation. In addition to the clicking activity, Judy displays a large amount of advertisements, which in some cases leave users with no option but clicking on the ad itself. Although most apps have positive ratings, some of the users have noticed and reported Judy’s suspicious activities, as seen in the images below:
How long as the Judy Malware been on the Google Play Store?
Judy malware has been on the Play Store for a long time, a year to be precise. Check Point found the adware on at least 41 apps, which have been developed by a Korean company 'Kiniwini' registered on Google Play as ENISTUDIO corp. The company develops mobile apps for both Android and iOS platforms. It is mentioned on the Google Play Store as ENISTUDIO corp.
“The malicious apps reached an enormous spread between 4.5 million and 18.5 million downloads,” reads Check Point’s blog post.
list of malicious apps developed by Kiniwini
list of apps developed by other developers
What is Google doing about Judy Malware? Do these to protect your Android device and data?
Check Point Research made a list of 41 apps which have the malware. If you have any of those apps listed above, you have to remove them immediately. Though Google is removing infected apps from the Play Store, it is important you take other measures to protect your smartphone:
• Use an anti-virus. Though Google Play Store has a mechanism in place to check for malicious apps, even the search giant misses out on scanning malware sometimes (as in this case). So, it is imperative you invest in a good anti-virus.
• Keep your device updated. Check if your device is up-to-date with the latest software version as well as security patches.
• Always browse an unsecured network via VPN.
• Before downloading an app, check for permissions it is asking for. Remember, your privacy is at risk, each time you download a new app. If you are not comfortable with granting permissions to certain things like contacts or camera or mic, or think the app doesn’t need access to these, simply don’t download the app.