1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Huge subscription fraud campaign hits over 100 million Android us

    From TechnologyDaily@1337:1/100 to All on Fri Jan 28 19:30:04 2022
    Huge subscription fraud campaign hits over 100 million Android users

    Date:
    Fri, 28 Jan 2022 19:07:34 +0000

    Description:
    More than 400 apps were fraudulently charging users for "premium services".

    FULL STORY ======================================================================

    A widespread Android subscription fraud campaign has been discovered actively stealing from users money.

    Uncovered by cybersecurity researchers from Zimperium zLabs, the Dark Herring campaign consists of some 470 apps, all found in the official Google Play Store.

    The apps , most of which fall in the entertainment category, have all offered premium services for registered users. Those that would register an account, would be billed up to $15, through Direct Carrier Billing (DCB). No malware present

    DCB is a mobile payment method, allowing consumers to pay for things they buy online, via the bill for their phone plan. This means users that installed these apps would not know theyd been charged for anything, until the phone bill arrives in the mail.

    Furthermore, as these apps can still be used, and many people dont check the details of their phone bills, in some instances, the charging went on for months, the researchers hint.

    As these apps dont necessarily carry malware with them, the fraud was relatively difficult to detect. In some cases, it was said, the victims took months before noticing that they had been fraudulently charged on their account.

    In total, these apps were downloaded on 105 million devices, located in 70 countries around the world. All of this, researchers say, make Dark Herring the longest-running mobile SMS scam discovered. Read More

    This new version of Android 12 will make cheap phones run much faster

    The best Android apps of 2022

    Windows 11 update will introduce support for Android apps

    Here are some of the apps used in the campaign: Smashex Upgradem Stream HD Vidly Vibe Cast It My Translator Pro New Mobile Games StreamCast Pro Ultra Stream Photograph Labs Pro

    Researchers from Zimperium believe the operators made away with hundreds of millions of dollars, so far.

    While Google has since removed all of the apps from the Play Store (the full list can be found here ) many can still be downloaded from third-party repositories online. You might also want to check out our list of the best ID theft protection right now

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/huge-subscription-fraud-campaign-hits-over-100- million-android-users/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)