Android Users Targeted in Subscription Fraud Campaign

Share post:

According to Bleeping Computer, researchers at Avast recently uncovered a massive fraud campaign in which threat actors used 151 Android apps to tie users to premium subscription plans without their knowledge.

The apps included fake discount apps, games, custom keyboards, QR code scanners, video and photo editors, spam call blockers, camera filters and others.

When the apps are first launched, the app uses data from the smartphone, such as location and IMEI, to adjust its language to the country after which it asks users to enter their mobile phone number and email address to access the features of the program.

Using the app, which has access to a user’s phone number and other required permissions, the app then subscribes the victim to a $40 a month SMS service from which the scammers receive a cut as affiliate partners.

By using a large number of apps for the fraud campaign called “UltimaSMS” help the scammers maintain a constant flow of unsuspecting victims, although the constant reporting has led Google to remove some of the apps. Google has now removed 80 related apps identified by Avast researchers.

For more information, read the original story in Bleeping Computer.

SUBSCRIBE NOW

Related articles

Russian State-Backed Cyber Attack Exploits Zero-Day Vulnerabilities in Windows and Firefox

Headline: A sophisticated cyberattack leveraging two chained zero-day vulnerabilities in Mozilla Firefox and Microsoft Windows has been confirmed by...

Starbucks Forced to Pay Baristas Manually After Ransomware Attack

A ransomware attack on Blue Yonder, a third-party scheduling software provider, has disrupted Starbucks’ ability to manage employee...

Google Launches Free Cybersecurity Certificate for Entry-Level Jobs

Google has introduced a new Cybersecurity Professional Certificate, aimed at preparing students for entry-level roles in just six...

Critical Vulnerability Leaves Millions Of Sites Vulnerable To Takeover

A severe authentication bypass vulnerability has been discovered in the WordPress plugin "Really Simple Security" (formerly *Really Simple...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways