Judy Malware Has Hidden In Play Store For Over A Year

Elizabeth Williams
May 29, 2017

There is a new piece of malware that has been found to be hidden on Google Play Store.

Among such apps, one had been available directly through Google's Play Store for over a year until recently.

"The malware, dubbed "Judy", is an auto-clicking adware which was found on 41 apps developed by a Korean company", the security firm writes. The search giant has started removing these infected apps from the Play Store. Judy is borrowed from the name of the malware itself, for good measure.

"It is unclear how long the malicious code existed inside the apps, hence the actual spread of the malware remains unknown", Check Point says, but those download numbers mean "the total spread of the malware may have reached between 8.5 and 36.5 million users". This was how Judy was able to bypass Bounce, Google Play's protection system. The malicious part is in the Android phone and then it will begin directing everything to the URLs from within the control server.

Kiniwini is the developer that put the Judy games on Google Play Store.

Emmanuel Macron: my handshake with Trump was 'a moment of truth'
Pundits and journalists have made a habit of shipping hunky Canadian prime minister Justin Trudeau with female politicians. Tara Mulholland, CNN's social media journalist, noted how their summer stroll looked "insanely romantic".

Ariana Grande to perform at benefit concert for Manchester
However, police needed any information the public might have about his movements from May 18 when he returned to Britain. The man seen in the images is carrying a blue backpack on his back, with a sales tag still hanging off it.

Royals rally for win over Cleveland 6-4
The White Sox will now look to carry the win into the new week as they host the Boston Red Sox for the start of a three-game set. Michael Brantley followed with run-scoring single and Carlos Santana completed the rally with an RBI fielder's choice.

The malware belonged to a Korean company that manufactures apps for both iOS and Android devices. The issue though is that there is malware in Judy, which is helping generate the fake revenue. It is estimated at least 36 million Android devices could be infected.

Variants of the Judy malware are also inside other apps not linked to these content makers, which extends the reach it could potentially have had.

The bridgehead app is created to look legitimate and to bypass Google Bouncer, the gatekeeper that reviews suspicious content on Google Play. Another app that has Judy malware installed in it is the Dog Music Relax app. There arelikely millions of people out there who have downloaded these apps, which means millions of Android devices could be infected with Judy malware. But in the case of Judy malware, this is a big miss.

If you have an Android device, you might want to be on the lookout for something that is being called Judy malware. You should never download apps from third-party app stores either. You really should bookmark a couple of the good companies, like Check Point, and every couple weeks see what is going on because this company is always finding malware that pops up on Android. Play Protect will be built into every device with Google Play and automatically takes action to keep users' data and device safe.

Other reports by VgToday

Discuss This Article