Security News

U.S. charges Joker's Stash and Rescator money launderers
2024-09-27 18:00

The U.S. Department of Justice (DoJ) has announced charges against two Russian nationals for operating billion-dollar money laundering services for cybercriminals, including ransomware groups. [...]

Several New Play Store Apps Spotted Distributing Joker, Facestealer and Coper Malware
2022-07-19 06:58

Google has taken steps to ax dozens of fraudulent apps from the official Play Store that were spotted propagating Joker, Facestealer, and Coper malware families through the virtual marketplace. "Instead of waiting for apps to gain a specified volume of installs and reviews before swapping for a malware-laced version, the Joker developers have taken to hiding the malicious payload in a common asset file and package application using commercial packers," the researchers explained the new tactic adopted by the persistent malware to bypass detection.

Another Set of Joker Trojan-Laced Android Apps Resurfaces on Google Play Store
2022-05-10 05:28

A new set of trojanized apps spread via the Google Play Store has been observed distributing the notorious Joker malware on compromised Android devices. Despite continued attempts on the part of Google to scale up its defenses, the apps have been continually iterated to search for gaps and slip into the app store undetected.

Over 500,000 Android Users Downloaded a New Joker Malware App from Play Store
2021-12-19 23:47

A malicious Android app with more than 500,000 downloads from the Google Play app store has been found hosting malware that stealthily exfiltrates users' contact lists to an attacker-controlled server and signs up users to unwanted paid premium subscriptions without their knowledge. The latest Joker malware was found in a messaging-focused app named Color Message, which has since been removed from the official app marketplace.

Malicious Joker App Scores Half-Million Downloads on Google Play
2021-12-17 19:23

The Joker malware is back again on Google Play, this time spotted in a mobile application called Color Message. Joker apps subscribe victims to unwanted, paid premium services controlled by the attackers - a type of billing fraud that researchers categorize as "Fleeceware." Often, the victim is none the wiser until the mobile bill arrives.

Updated Joker Malware Floods into Android Apps
2021-07-14 12:23

Joker has been around since 2017, disguising itself within common, legitimate apps like camera apps, games, messengers, photo editors, translators and wallpapers. Once installed, Joker apps silently simulate clicks and intercept SMS messages to subscribe victims to unwanted, paid premium services controlled by the attackers - a type of billing fraud that researchers categorize as "Fleeceware." The apps also steal SMS messages, contact lists and device information.

Joker Android Trojan Lands in Huawei AppGallery App Store
2021-04-12 22:18

Ten variants of the Joker Android Trojan managed to slip into the Huawei AppGallery app store and were downloaded by more than 538,000 users, according to new data from Russian anti-malware vendor Doctor Web. Also known as Bread, the Joker Trojan was first observed in 2017 when it was originally focused on SMS fraud.

Joker malware infects over 500,000 Huawei Android devices
2021-04-10 19:20

More than 500,000 Huawei users have downloaded from the company's official Android store applications infected with Joker malware that subscribes to premium mobile services. These ten apps were downloaded by more than 538,000 Huawei users, Doctor Web says.

Joker’s Stash Carding Market to Call it Quits
2021-01-18 19:50

2020 turned out to be a tough year for Joker's Stash. Gemini Advisory, a New York City-based company that monitors underground carding shops, tracked a "Severe decline" in the volume of compromised payment card accounts for sale on Joker's Stash over the past six months.

Underground Carding Marketplace Joker's Stash Announces Shutdown
2021-01-18 14:09

Joker's Stash, a large underground marketplace for stolen payment card data, has announced plans to shut down operations on February 15, 2021. The representatives of the carding service pointed out that, although the marketplace has become highly popular, the team is getting a "Well-deserved retirement."