Expert Reviews

To help us provide you with free impartial advice, we may earn a commission if you buy through links on our site. Learn more

Play Store malware downloaded by unsuspecting users nearly half a million times

News

The new Android trojan has been dubbed ‘The Joker’

A new malware threat has found its way onto the Play Store, despite Google’s best efforts to keep the platform squeaky clean. Named ‘The Joker’, the trojan virus was operating on 24 different Android apps before it was discovered.

Initially discovered by security researcher Aleksejs Kuprins, the virus was designed to take money from victims by simulating a signup process that would sneakily sign users up for premium subscription services without them even knowing.

See Related
Best Android apps 2019: Our favourite applications for Android phones and tablets
Best antivirus for Android 2022: The best free and paid-for apps to keep you safe from viruses, phishing scams and dodgy apps

By using a background component in the app, the malware silently clicks on adverts, and can even sign unwitting users up to paid subscription services by simulating a click on a sign-up button. The trojan can then access the app’s authorisation code via SMS and use this to authorise a premium subscription, which it then takes the money for.

These apps have now been removed but not before they were downloaded nearly half a million times by unknowing users. It’s not exactly clear how many people are still at risk from the virus but if you’ve installed any of the below apps, you should delete them IMMEDIATELY.

  • Altar Message
  • Antivirus Security – Security Scan
  • Beach CameraAdvocate Wallpaper
  • Age Face
  • Board picture editing
  • Mini Camera
  • Print Plant scan
  • Rapid Face Scanner
  • Reward Clean
  • Ruddy SMS
  • Soby Camera
  • Collate Face Scanner
  • Ignite Clean
  • Leaf Face Scanner
  • Spark Wallpaper
  • Cute Camera
  • Certain Wallpaper
  • Climate SMS
  • Dazzle Wallpaper
  • Declare Message
  • Display Camera
  • Great VPN
  • Humour Camera

According to Kuprins, the malware was able to target users in 37 countries, provided the victim was using a SIM card originally from one of the countries in question.

Targeted countries include Australia, Austria, Belgium, Brazil, China, Cyprus, Egypt, France, Germany, Ghana, Greece, Honduras, India, Indonesia, Ireland, Italy, Kuwait, Malaysia, Myanmar, Netherlands, Norway, Poland, Portugal, Qatar, Republic of Argentina, Serbia, Singapore, Slovenia, Spain, Sweden, Switzerland, Thailand, Turkey, Ukraine, United Arab Emirates, United Kingdom and the United States.

READ NEXT: The best VPN for Android 2019

The above apps are just the ones that have been discovered so far, meaning others may have been targeted but have yet to be taken down. Google seems to be on top of the issue though, and has been quickly taking down any apps it believes to be compromised.

Anyone who has downloaded the compromised apps should delete them immediately if they have not done so already. Users should then continue to monitor their bank statements for unusual activity and subscriptions.

Read more

News
how to watch love island lead How to watch Love Island 2024
When is Amazon Prime Day 2024?
You now have to spend more to get free delivery from Amazon
A man holds a document in one hand and holds his smartphone with the other What is CPI and how will it affect your mobile phone bill?
The best 12-month broadband deals, based on our survey
Best phone battery life: The longest-lasting smartphones
Best Wi-Fi extender to buy in 2024
The best budget smartphones to buy in 2024, as tested by us
The best mobile networks, based on our annual survey