https://wccftech.com/google-removes-24-play-store-apps-that-were-harboring-malware/

Given the sheer volume of apps hosted on the Google Play Store, it is cumbersome even for a company with Google’s resources to keep track of them all. Google does, however, a stellar job of taking out the trash once in a while and in today’s development, over twenty-four apps have been booted off the Play Store. Cybersecurity firm CSIS Security Group found the malicious apps in question.

Recently, a lot of Android devices were hit by “Joker” malware. It let hijackers sign people up to premium subscription services, steal SMS messages, contacts, and even capture key device information such as the serial and IMEI numbers. This trojan was also able to silently click on ads while simultaneously accessing any verification codes sent via SMS — which was used to sign up for these premium subscriptions. For example, in Denmark, Joker can sign the victim up for a 50 DKK/week service (roughly ~6,71 EUR). This strategy works by automating the necessary interaction with the premium offer’s webpage, entering the operator’s offer code, then waiting for an SMS message with a confirmation code and extracting it using regular expressions. Finally, the Joker submits the extracted code to the offer’s webpage, to authorize the premium subscription. The 24 Android apps that were littered with the malware can be found below: