Harley Malware: New Attack on Android Devices
Written by: anshul vyas
Introduction
In fact, a 2020 study found that even some of the most benign Android apps available on the Google Play Store were infected with malware. In the DC Comics Universe, Harley Quinn is a character whose girlfriend is named Harley Quinn, making her susceptible to malware attacks and viruses. Joker malware is well-known. There has been a recent surge in Harley malware targeting Android users, which was first found on Samsung, Huawei, and Google phones, where it was found draining bank accounts without the user’s knowledge.
Modus Operandi
Hackers use Trojans to attack potential targets. Infection of the apps in the Google Play Store occurs when the hackers download random apps and then infect them with malicious code before reuploading alternate versions of the originals. Users unknowingly download these apps, thinking they’re getting the original version. Since the altered app continues to function normally, users are unaware that they have downloaded harmful code onto their devices. When the altered app is installed on a smartphone, it spreads throughout the device and gains control of vital components.
There have been more than 190 malicious apps discovered on the Google Play Store that are infected with the Harley malware since 2020. 4.8 million of these apps have been downloaded, but there could be more.
Stealing through Subscriptions
As soon as Harley is installed, it gathers data about the user’s device and information about the mobile network they are using. Once the phone switches from Wi-Fi to mobile, it is contacted by the C&C server so that it can collect a list of subscriptions that should be opted into. A subscription site is opened in an invisible window by Harley, the victim’s phone number is entered, the button is pressed, and the confirmation codes are even entered via text message. By signing up for a subscription service without realizing it, the victim ends up paying. Harley can even call specific phone numbers to confirm subscriptions, which is surprising.
Apps that are affected
- Pony Camera — 500,000+ downloads
- Live Wallpaper and Themes Launcher — 100,000+ downloads
- Action Launcher & Wallpapers — 100,000+ downloads
- Color Call — 100,000+ downloads
- Good Launcher — 100,000+ downloads
- Mondy Widgets — 100,000+ downloads
- Funcall-Voice Changer — 100,000+ downloads
- Eva Launcher — 100,000+ downloads
- Newlook Launcher — 100,000+ downloads
- Pixel Screen Wallpaper — 100,000+ downloads
Protection
Although Google attempts to keep malicious apps out of the Play Store, malicious apps often end up there. In order to avoid being fooled by reviews on the Play Store, check online for written or video reviews before installing any app. Since reviews on the Play Store can sometimes be faked, it’s also a good idea to check online for written or video reviews before installing any app. You should also make sure Google Play Protect is enabled on your device so that it scans all of your apps and new ones for malware. You should also consider installing one of the best Android antivirus apps for additional protection. It is important to be careful when installing apps on your devices, just as you would with anything else you download online. Ask yourself if you really need an app like a flashlight, address book, or translation before installing it.
