A new malware was found infecting almost 36.5 million Android phones globally. Malware ‘Judy’ was spotted in 41 apps developed by a Korean company named Kiniwini and registered on Google Play as Enistudio Corp.
Security company Check Point said the malware uses infected devices to generate large amounts of fraudulent clicks on advertisements, generating revenues for the perpetrators behind it. The malicious apps reached an astonishing spread between 4.5 million and 18.5 million downloads.
Some of the apps we discovered resided on Google Play for several years, but all were recently updated. It is unclear how long the malicious code existed inside the apps, hence the actual spread of the malware remains unknown.
Judy relies on the communication with its Command and Control server (C&C) for its operation. After Check Point notified Google about this threat, the apps were swiftly removed from the Play store.
(Photo source: http://blog.checkpoint.com)