If the Joker doesn’t get your device, his ‘girlfriend’ might, here’s how – Times of India
Remember the Joker malware? Now another one called Harly has arrived and its method of infecting your device is via Google Play installs, as per a report by MakeUseOf. As those who have a bit of idea about Batman villains, the Harly malware is named after Harley Quinn, the Joker’s fictional girlfriend in the DC Comics universe. The difference between these two malware is that while the Joker malware needed to download the malicious code after landing on the device via legitimate-looking apps, the Harly malware carries the malicious code with it and does not rely on being remotely controlled.
How the Harly malware works
The Harly malware is designed to target users by signing up their accounts with paid subscriptions without their knowledge. Once it arrives on your device, Harly will secretly sign it up for expensive subscriptions that will eventually get added to your monthly phone bill. Activating subscription to various services can usually be done via SMS verification and phone calls to an automated number and the malware takes advantage of that. The trojan subscriber works by opening hidden windows and entering sign-up details and also by intercepting SMS messages to get a hold of the verification codes. It can also make phone calls, says the report. Harly is able to do all this via your mobile data connection, after disconnecting your device from Wi-Fi.
As per Kaspersky, about 190 different Android apps have been found containing the Harly malware and an estimate puts the downloads at atleast 4.8 million.
For now, Harly is only configured to work with local Thai telecoms providers but its reach may expand, warns the report.
How you can stay safe from the malware
Since the Harly malware can arrive via safe-looking apps on Google Play Store, here are some of the precautions you can take:
How the Harly malware works
The Harly malware is designed to target users by signing up their accounts with paid subscriptions without their knowledge. Once it arrives on your device, Harly will secretly sign it up for expensive subscriptions that will eventually get added to your monthly phone bill. Activating subscription to various services can usually be done via SMS verification and phone calls to an automated number and the malware takes advantage of that. The trojan subscriber works by opening hidden windows and entering sign-up details and also by intercepting SMS messages to get a hold of the verification codes. It can also make phone calls, says the report. Harly is able to do all this via your mobile data connection, after disconnecting your device from Wi-Fi.
As per Kaspersky, about 190 different Android apps have been found containing the Harly malware and an estimate puts the downloads at atleast 4.8 million.
For now, Harly is only configured to work with local Thai telecoms providers but its reach may expand, warns the report.
How you can stay safe from the malware
Since the Harly malware can arrive via safe-looking apps on Google Play Store, here are some of the precautions you can take:
- Check the reviews of apps before downloading them from Play Store. If the app is fraudulent, then the people who installed it first and got in danger will usually warn others in the reviews and by giving low ratings. So, keep a lookout for reviews and low ratings on the Play Store.
- Do not install apps you don’t actually need to reduce the risk of getting your device infected.
- Put a spending limit on your phone bill if possible. This way, there is a lower chance of subscription services charging you.
- Protect your device with a paid antivirus solution.
For all the latest Technology News Click Here
For the latest news and updates, follow us on Google News.
Denial of responsibility! NewsUpdate is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.