Thursday 8 June 2017, Poradnik bezpieczeństwa

“Judy” – Be careful what you install from Google Play Store!

Lost24

The security experts from Check Point company have recently discovered a new threat, known as Judy.

What exactly is “Judy”, and why is it considered dangerous?

In short, Judy is a new virus which has successfully bypassed the Google Play Store’s security means, and infected over forty popular game apps. Each app containing Judy's code is capable of silently registering the endangered device to a C&C server, and download additional payload that starts the actual malicious process.

Furthermore, the Judy apps can also display a large number of advertisements. The ads would often dominate the screen almost to the point that the users would need to click on the ads to get rid of them.

According to the Check Point team, the malicious apps were made by a South Korean company called Kiniwini, registered on the Google Play Stores as ENISTUDIO corp.

The Google company has removed the Judy apps from Play Store, but up to 35.6 million phones could already be infected. The concerned users ought to first check whether they have any apps created by Kiniwini or ENISTUDIO Corp installed on their phones, and if so delete them instantly and run an antivirus software.