Malware Judy, the latest malware to infect Android phones.
After WannaCry Ransomware that infected Microsoft computers, a new malware was found that infected Android phones through apps that could be downloaded from the Google Play Store. Malware Judy was discovered on 41 apps by security research firm CheckPoint and had already infected between 8.5 million to 36.5 million users by the time Google was alerted.
This malware, supposedly created by Korean company Kiniwini, which goes by the name ENISTUDIO on the Play Store is an auto clicking adware that uses infected devices to generate fraudulent clicks on advertisements which will generate revenue for the creators of this malware.
The malicious apps reached a spread between 4.5 million to 18.5 million downloads, using the JavaScript code to locate and click on banners and advertisements from the Google ad tech. Each click by the malware on an advertisement meant more payment for the creators of the malware from the website developers.
The bug was apparently available on the Play Store for more than a year essentially bypassing Google Play Store’s protection, remaining dormant and undetected until a recent update. Google Play has taken down most of the concerned applications which were mainly several types of games and value added apps relying on the communication with its Command and Control (C&C) for operation.