S&P 500
7,226.20
+0.01%
Dow Jones
49,494.60
-0.62%
Nasdaq 100
27,685.40
+0.66%
Russell 2000
2,804.78
-0.02%
FTSE 100
10,364.50
0.00%
Nikkei 225
59,260.50
-0.78%

Apps & Software

Massive Attack on Google Play May Have Reached 36 Million Users

Photo of Douglas A. McIntyre
By Douglas A. McIntyre Updated Published
Follow 24/7 Wall St. on Google
This post may contain links from our sponsors and affiliates, and Flywheel Publishing may receive compensation for actions taken through them.
Massive Attack on Google Play May Have Reached 36 Million Users

© courtesy of Google Inc.

Alphabet Inc.’s (NASDAQ: GOOGL) Google Play product has been the target of a huge malware attack which has affected as many as 36 million users. Google Play allows Android OS mobile users access to apps, movies, music, and books. Android is the most widely distributed mobile OS in the world and is used on almost all smartphones not produced by Apple Inc. (NASDAQ: AAPL).

According to research firm Check Point:

Check Point researchers discovered another widespread malware campaign on Google Play, Google’s official app store. The malware, dubbed “Judy”, is an auto-clicking adware which was found on 41 apps developed by a Korean company. The malware uses infected devices to generate large amounts of fraudulent clicks on advertisements, generating revenues for the perpetrators behind it. The malicious apps reached an astonishing spread between 4.5 million and 18.5 million downloads. Some of the apps we discovered resided on Google Play for several years, but all were recently updated. It is unclear how long the malicious code existed inside the apps, hence the actual spread of the malware remains unknown.

We also found several apps containing the malware, which were developed by other developers on Google Play. The connection between the two campaigns remains unclear, and it is possible that one borrowed code from the other, knowingly or unknowingly. The oldest app of the second campaign was last updated in April 2016, meaning that the malicious code hid for a long time on the Play store undetected. These apps also had a large amount of downloads between 4 and 18 million, meaning the total spread of the malware may have reached between 8.5 and 36.5 million users. Similar to previous malware which infiltrated Google Play, such as FalseGuide and Skinner, Judy relies on the communication with its Command and Control server (C&C) for its operation. After Check Point notified Google about this threat, the apps were swiftly removed from the Play store.

Malware attacks have been in the news recently. Ransomeware called WannaCry recently hit approximately 200,000 computers in 150 countries, and, in the process, virtually shut down the U.S. health care network.

[wallst_email_signup]

Photo of Douglas A. McIntyre
About the Author Douglas A. McIntyre →

Douglas A. McIntyre is the co-founder, chief executive officer and editor in chief of 24/7 Wall St. and 24/7 Tempo. He has held these jobs since 2006.

McIntyre has written thousands of articles for 24/7 Wall St. He is an expert on corporate finance, the automotive industry, media companies and international finance. He has edited articles on national demographics, sports, personal income and travel.

His work has been quoted or mentioned in The New York Times, The Wall Street Journal, Los Angeles Times, The Washington Post, NBC News, Time, The New Yorker, HuffPost USA Today, Business Insider, Yahoo, AOL, MarketWatch, The Atlantic, Bloomberg, New York Post, Chicago Tribune, Forbes, The Guardian and many other major publications. McIntyre has been a guest on CNBC, the BBC and television and radio stations across the country.

A magna cum laude graduate of Harvard College, McIntyre also was president of The Harvard Advocate. Founded in 1866, the Advocate is the oldest college publication in the United States.

TheStreet.com, Comps.com and Edgar Online are some of the public companies for which McIntyre served on the board of directors. He was a Vicinity Corporation board member when the company was sold to Microsoft in 2002. He served on the audit committees of some of these companies.

McIntyre has been the CEO of FutureSource, a provider of trading terminals and news to commodities and futures traders. He was president of Switchboard, the online phone directory company. He served as chairman and CEO of On2 Technologies, the video compression company that provided video compression software for Adobe’s Flash. Google bought On2 in 2009.

Continue Reading

Douglas A. McIntyre |

950 Million Android Devices Threatened by Bug

The following warning was issued by a software security firm that researches the Google Android OS.
Gifts That Go on Giving: The 8 Most Hackable Gifts of 2016
Paul Ausick |

Gifts That Go on Giving: The 8 Most Hackable Gifts of 2016

Looking for a last-minute cool gift for that technology geek son or daughter, or that coworker? Now you've found it…
BitKeep Reimburses Users Affected by $8M Hack
247patrick |

BitKeep Reimburses Users Affected by $8M Hack

BitKeep said it had compensated users affected by the $8 million hack in December 2022.
Douglas A. McIntyre |

Hackers To Hit Apple iPhone, Google Android Handsets Next Year

Roel Schouwenberg of Kaspersky Lab Americas made a number of either intemperate or prescient comments to USA Today. It may take a…
What’s Up With Apple: Swipe at Sideloading, Facebook Attacks and More
Paul Ausick |

What’s Up With Apple: Swipe at Sideloading, Facebook Attacks and More

Apple executive defends App Store policy against sideloading and Facebook looks to undermine the policy.
Ransomware Revenue Dropped by 40% in 2022: Here’s Why
247patrick |

Ransomware Revenue Dropped by 40% in 2022: Here’s Why

A recent analysis reveals a 40% decrease in ransomware revenue in 2022 compared to 2021, despite a marked increase in…
Douglas A. McIntyre |

The Successful Models For Selling Apps At The Apple (AAPL) App Store

The Apple (AAPL) App Store, with over 1.5 billion application downloads, has become a tremendous market where software developers can…
247patrick |

German Regulator Sounds Alarm Bells Over Crypto and Banking Malware

Germany’s top financial regulator has warned about malware that is targeting around 400 crypto and banking apps.
Atomic Wallet Hack Affected 1% of Users, Up to $50M Estimated to Be Drained
247patrick |

Atomic Wallet Hack Affected 1% of Users, Up to $50M Estimated to Be Drained

Atomic Wallet claims that only 1% of its monthly active users were affected by compromised user wallets.

Top Gaining Stocks

Cboe Global Markets
CBOE Vol: 1,568,143
New Pluto Global
PSKY Vol: 12,285,993
Seagate Technology
STX Vol: 7,378,346
Oracle
ORCL Vol: 26,317,675
Datadog
DDOG Vol: 6,247,779

Top Losing Stocks

LKQ
LKQ Vol: 4,367,433
Clorox
CLX Vol: 13,260,523
Stryker
SYK Vol: 4,519,455
Mohawk Industries
MHK Vol: 1,859,865
Amgen
AMGN Vol: 3,818,618