Slashdot Mirror

← Back to Stories (view on slashdot.org)

Malicious Apps Brought Ad-Clicking 'Judy' Malware To Millions Of Android Phones (fortune.com)

Posted by EditorDavid on from the malware-money dept.

An anonymous reader quotes Fortune: The security firm Checkpoint on Thursday uncovered dozens of Android applications that infected users' devices with malicious ad-click software. In at least one case, an app bearing the malware was available through the Google Play app store for more than a year. While the actual extent of the malicious code's spread is unknown, Checkpoint says it may have reached as many as 36.5 million users, making it potentially the most widely-spread malware yet found on Google Play... The nefarious nature of the programs went unnoticed in large part, according to Checkpoint, because its malware payload was downloaded from a non-Google server after the programs were installed. The code would then use the infected phone to click on Google ads, generating fraudulent revenue for the attacker.

8 of 55 comments (clear)

  1. Android malware is profitable for Google and mfrs. by Futurepower(R) · · Score: 4, Insightful

    Android malware causes Google and Android phone manufacturers and phone service providers to make more money. Most people don't have the time or technical ability to deal with issues, so they buy new phones.

    Google arranged that Android cannot reliably be updated to its latest version. That pro-malware destructiveness is profitable.

    Google needs better management. The company is rapidly getting a bad reputation, partly also because of tracking internet users. Why should Google know if I visit my bank account?

    My opinions.

  2. Re:Android malware is profitable for Google and mf by Jamu · · Score: 2

    Google provides the updates/patches for *everyone*

    Google updated my Nexus 7 for about 18 months. They stopped at the end of 2015.

    --
    Who ordered that?
  3. What's a malicious phone app? by Frosty+Piss · · Score: 3, Interesting

    Odd, I've never had these sorts of problems. My phone is an iPhone 5s...

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:What's a malicious phone app? by mnemotronic · · Score: 2

      I've never had these sorts of problems. My phone is an iPhone 5s.

      Sorry; dumb question: How do you know you've never had this problem? Maybe you have and just have not been aware of it.

      --
      The Russians have won. They have made the world a cesspool of distrust, greed, fear and hate.
  4. Re:Android malware is profitable for Google and mf by The+MAZZTer · · Score: 3, Interesting

    You do realize Google recently updated its Play Store developer EULA to ban apps that download and run binaries from non-Google Play Store locations, right? That will seal this hole. Sounds like Google is cracking down to me.

  5. Re:Android malware is profitable for Google and mf by stephanruby · · Score: 2

    The app faked ad impressions and ad clicks. This is a flaw with their advertisement system, not with device security.

    As a user, I only care that the apps I install do not take too much energy, do not take too many background CPU cycles, and do not take too much bandwidth. Aside from those three things, wich I can already monitor with Android, I couldn't care less if my apps fake ad clicks. If you ask me, the more fake data and the more fake ad clicks there are, the better it is for society as a whole.

  6. Bad marketing for Google by Futurepower(R) · · Score: 2

    "It is then the carriers responsibility to get that sorted out..."

    The problem for Google is that abuse by the carriers damages Google's reputation. Most people don't understand all the issues.

    Companies should have enough control over their products that they can prevent their products from being used as an instrument of abuse by other companies.

  7. Re:meanwhile iPhone users... by tsa · · Score: 2

    Every time I read about yet another Android malware I am reminded why I bought an iPhone. They're worth the price.

    --

    -- Cheers!