Joker Malware is basically spyware that has continued to find its way on the Google Play Store thanks to different tricks. First, the name “Joker” is taken from one of the C&C domains of earlier found samples.
According to the investigation, this malware penetrates users’ devices via applications. By July 2020, this malware has infected over 1700 applications that are available on Google Play Store.
Joker malware has forced Google Play Store to remove the compromised applications from its platform. But since malware authors keep making small changes in their code, many researchers are still finding apps rigged with this spyware.
It steals personal data such as SMS, contacts, device information, OTPs, and other relevant information. It quietly cooperates with third-party advertisers and registers the user to paid services without their prior approval.
Quick Heal Security Labs researchers found eight applications on Google Play Store infected with the Joker Malware. Google Play Store has removed these applications after Quick Heal Security Labs researchers reported them.
Joker Malware Infected Applications
Following are the applications that were found to have Joker malware in them. If you still have any of the below app installed, then we recommend you immediately uninstall them.
- Auxiliary Message
- Free CamScanner
- Element Scanner
- Travel Wallpapers
- Fast Magic
- SMS Super Message
- Go Messages
- Super SMS
These applications were downloaded almost more than 50,000 times from the Google Play Store. According to the same researcher, this malware is usually spread through scanner applications, wallpaper applications, and message applications.
Joker Malware Working
Let’s take a look at how Joker Malware works through an infected application on your Android phone.
We will be taking a look at the “Element Scanner” App, which is developed by “Obrien Connie” and has a download count of “10K+”.
Few Tips To Stay Safe from Joker and other Malwares
Below, you will find few security tips recommended by various cybersecurity experts to stay safe from Joker and other similar malware.
- Make sure to download applications from trusted platforms only.
- Use a Virtual Private Network to encrypt your network traffic.
- Learn to tell the difference between fake and authentic applications. Look for the verified mark.
- Never click on suspicious links received via SMS, social media message, or email.
- Keep the option “install from unknown sources” disabled.
- Check for unusual data usage.
- Always stay vigilant when allowing app permission.
- Pay close attention to the application’s reviews and ratings.
- Use antivirus apps specially developed for Android OS such as Bitdefender Mobile Security, Norton Mobile Security, McAfee Mobile Security. Some VPN services also offer an antivirus feature.