TechViews News …..
Security researchers at Check Point Security recently discovered a malware scam in Google’s Play Store. The malware dubbed “Judy” has been hiding behind the scenes on 41 specific apps that have been available in the Play Store for years, so it’s unclear how long they have been infecting devices.
The malicious apps were developed by the Korean company, Kiniwini, listed in the Play Store as ENISTUDIO corp. The impacted apps have been downloaded millions of times and may have been spread to over 36 million users.
Moreover, the researchers also uncovered a few more apps, published by other developers on the Apple Store, inexplicably containing the same the malware in them. The connection between the two campaigns remains unclear, though researchers believe it is possible that one developer borrowed code from the other.
This is how it works — the user downloads an app from the Play Store and at that point, it’s not malicious. But once the user opens the app, it connects to its Command and Control server (C&C) and installs the malicious code.