The Korean company Kikiwini published 41 Android APPS under the name ENISTUDIO Corp.
It was discovered in 2017 that these could have infected up to 36.5 million Android devices by hidden malware that produced fake advert clicks.
Security firm Check Point identified these apps and realised these infected devices could be used to generate large amounts of fraudulent clicks on advertisements, generating revenues for the creators of the malware.
The malware was dubbed “Judy” by Check Point after the title character in Kiniwini’s apps. Chef Judy: Picnic Lunch Maker, for example, encourages players to “create delicious food with Judy
Google removed the apps from Google Play once it had informed of the problem.
How does Judy infect a device?
Hackers create a harmless app that can get around Google’s security screening and it is added to the app store.
Once it has been downloaded by users, it silently registers with the makers servers for update. That update is not just latest software, content and adverts etc. It contains the code and list of web addresses. The APP then opens a browser window and starts to make clicks on the listed websites on the selected adverts. These clicks are registered by networks such as Google Ads and in time will produce payments to the makers.
This kind of cheating has been used in the past but this is one of the worst such examples and it circumvents Google APP security which they will not be pleased about.
Kiniwini also develop APPS for Apple devices but so far there are no reports of problems with those APPS.
This all happened a few years ago, but shows the dangers of relying on Google’s screening process for APPS. Be careful with any APPS you download.
Do enter your email address and click on the subscribe button
Facebook, Twitter, Microsoft, Google and other tech companies agreed to British government demands that they do more to keep young people safe on their online services.
This is a set of voluntary guidelines created by the UK, the U.S., Australia, Canada and New Zealand and it includes measures to stop new and existing child abuse photos and films appearing online.
The guidance also specifies that the companies must prevent streaming of such material and to work with Police to identify offenders and further develop their technology to stay ahead of offender’s behaviour online.
The countries have been clear that if the voluntary guidelines do not work then legislation will follow.
This is a big step forward – shame it has taken the tech companies so long to reach this point.
Do enter your email address and click on the subscribe button on top right to keep up to date with new
There have always been scams involving the sale of puppies and kittens but currently there are more, due to the social distancing rules that mean prospective buyers cannot visit to view the kittens or puppies and scammers are taking advantage of this.
The scammers offer animals for sale and you pay a deposit, but the animals are never delivered.
It’s always better to either wait until it is possible to view the animals or for someone on your behalf to view the animals but in current circumstances that is not always possible.
If you do choose to buy an animal seen only by photograph or recorded video, then take whatever steps you can to ensure the seller is genuine and that your payment is protected.
Insist on a Live view of the animal e.g. using Facebook Live or Zoom or similar video conferencing services
Verify the track record of the seller
Select a seller close to your location
Verify that payment details for the seller match the company name and address
Do not make full payment until the animal has been received and is what you expect
Do leave a comment on this post – click on the post title then scroll down to leave your comment.
There are endless PayPal phishing emails – scammers trying to get your login and password. This latest one tries to look like it’s from PayPal but the sender’s email address is a long series of Russian characters. The message says “Please check that we attached for account information” which is poor grammar as it’s a randomly generated phrase from a series of words input by the scammer. The message has an attached pdf file that claims to be an invoice for you to check but no doubt contains malware and/or a phishing link. Never open such messages – go to your PayPal account directly (not from links in an email) if you need to check anything.
“Dear Patriot, we are now giving away FREE PM2.5 Breathing Masks to everybody affected by the Coronavirus”. Sounds good but is a lie. The message claims that the masks are worth $79 each but are currently free. There is a worldwide shortage and no-one gives them away randomly. If anyone did have actual masks and could afford to give them away they would do so at their nearest hospital or care home or to key workers. A simple scam.
Ms. Ileana Corea, Import manager at SADOWSKA-MAZUREK SP. Z O.O. in Poland wants details of my deliveries to her company. She’s especially interested in the weight of each item. This appears to be nonsensical as we have never heard of her company and do not ship goods anywhere. However, it is a typical message from scammer trying to find out which of the random email addresses she is sending to are valid company email addresses. Never respond to such messages as it will just result in that email address being sold to more scammers.
“Military Source Exposes Shocking TRUTH About Coronavirus And The 1 Thing You Must Do Before It’s TOO LATE” is a typical scam email title. The 1 thing you should do is delete such pathetic emails.
A message that starts with a medical warning then goes to offer a ludicrous scam alternative. “Statins and Type 2 Diabetes Risk”. It’s true that there is recent research that shows a link between people who are overweight and have elevated blood sugar and take statins and that combination of factors in people can give a higher risk of developing diabetes type 2. This doesn’t mean that the statins cause the increase. However, the scammer is trying to frighten people into stopping taking statins and that could be life threatening. The scammers alternative is a ‘weird’ Greek trick that reverses diabetes. No. It’s just scammer lies.
Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.
The Digital Millennium Copyright Act (DMCA) is a 1998 United States copyright law that implements two 1996 treaties of the World Intellectual Property Organization.
It criminalizes production and dissemination of technology, devices, or services intended to circumvent measures that control access to copyrighted works (commonly known as digital rights management or DRM).
They are the guardians online of copyright material and are best known for being able to take-down websites where people have copied other’s content and not removed it when ordered to.
A “DMCA Takedown” is when content is removed from a website at the request of the owner of the content or the owner of the copyright of the content. It is a well established, accepted, internet standard followed by website owners and internet service providers.
Any owner of content has the right to process a takedown notice against a website owner and/or an Online Service Provider (e.g. ISP, hosting company etc.) if the content owner’s property is found online without their permission.
There is list of takedown conditions:
when copyright infringing content is removed or “taken down” from a website, by the website owner, upon receipt of a DMCA Takedown Notice from their ISP / Hosting company. This notice is generated by the, or on behalf of, the illegally published content owner, distributor, publisher etc.
when copyright infringing content is removed or “taken down” from a website by the website owner upon receipt of a DMCA Takedown Notice from the, or on behalf of, the content owner,distributor, publisher etc.
when copyright infringing content is removed or “taken down” from a website by the by the ISP or Hosting company of the website that is publishing the infringing content. This occurs because the website owner has not voluntarily complied with a DMCA Notice and the ISP or Hosting company must comply with the Takedown notice.
when an infringing website is taken down or “offline” by it’s ISP or Hosting company. This occurs because the website owner does not voluntarily comply with a Takedown notice as described above.
These Takedown actions occur upon receipt of a DMCA Takedown Notice which uses stipulations laid out in the Digital Millennium Copyright Act. (DMCA). This Act directly addresses the take down of (copyright) infringed content from a website which is publishing content in violation of copyright protection act or content being used without permission or not in accordance to the sworn statement of the content owner.
If you have needed to get a DMCA Take-down, do let me know, by email.