1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Android users at risk of new wallet-draining attacks

    From TechnologyDaily@1337:1/100 to All on Fri Jul 1 15:15:04 2022
    Android users at risk of new wallet-draining attacks

    Date:
    Fri, 01 Jul 2022 14:01:05 +0000

    Description:
    Toll fraud malware is growing more sophisticated by the day.

    FULL STORY ======================================================================

    Owners of Android smartphones are at risk of a new type of billing fraud designed to trick them into paying for premium subscription packages, Microsoft has warned.

    In an extensive blog post , detailing how the entire scheme operates, Microsoft explained that toll fraud malware is one of the most prevalent
    types on Android and that it just keeps evolving. Toll fraud is also quite complex, compared to its close relatives, SMS fraud and call fraud.

    These apps use specific network operators, running their operations only if the compromised endpoint is subscribed to one of its target operators.

    If these conditions are met, the app will subscribe to a service, completely out of sight for the device owner, and will even intercept one-time password SMS messages and other notifications.

    Toll fraud malware is also known for dynamic code loading, as this makes it harder for mobile security software to detect any foul play through static analysis. Prevention and mitigation

    However, Microsoft says there are characteristics that can be used to filter and detect these threats, and there are also adjustments in Android API restrictions and Google Play Store publishing policy, that can help mitigate the threat, the company added. Read more

    The best Android antivirus app of 2022


    This Android malware is so dangerous, even Google is worried


    Beware - another dangerous Android malware has had millions of downloads
    from the Google Play Store

    The first major malware variant in the toll fraud family was Joker, which managed to wiggle its way into the Google Play Store some five years ago. Its main goal is to generate as big of a financial impact on the victim as possible.

    As it carries sophisticated cloaking techniques, the best way to protect your devices from such malware is to make sure it doesnt get installed in the
    first place.

    As a general rule of thumb, Microsoft reminds, Android apps should not be sideloaded (installed from untrusted sources) and should always be kept up to date. Furthermore, apps should not be given SMS permissions, access to the notification listener or accessibility access unless there is a clear reason they are necessary. Keep your devices safe from ransomware with the best ransomware protection services right now



    ======================================================================
    Link to news story: https://www.techradar.com/news/android-users-at-risk-of-new-wallet-draining-at tacks/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)