Thursday, January 21, 19:41
Home security New WAPDropper malware infects Android devices for WAP scams

New WAPDropper malware infects Android devices for WAP scams

Security researchers Check Point they discovered one new Android malware, used in attacks against users in Southeast Asia (mainly). The new malware is called WAPDropper and right now distributed through malicious applications hosted in third-party application stores.

WAPDropper malware

Check Point said that when the WAPDropper malware infects a user, begins to registers for premium phone numbers which generate large charges for various types of services.

The result is that infected users get older accounts each month until they are unsubscribed from the premium services or report the issue to their mobile service provider.

This attack is known as "WAP fraud”And was very popular in the late 2000s and early 2010s. It disappeared with the rise of smartphones, but returned when Malware creators realize that many modern phones and telecommunications support the older WAP standard.

The WAPDropper gang is likely to be based in Asia

Η Check Point reports that based on the premium numbers used in these attacks, the gang behind WAPDropper malware most likely has its base or works with someone in Thailand or Malaysia.

"It's just a number game: the more calls you make with premium services, the more revenue is generated for those behind services. Everyone wins, except the victims of fraud".

As for the malware itself, Check Point says that WAPDropper works with two different modules. The first is one dropper, while the second is key component that carries out WAP fraud.

WAP Android

After downloading and installing the malware in one device, the dropper downloads the second component. Thus begins the fraud.

Check Point researchers warn that the malware can later be used to install other malware.

This type of multi-function dropper is secretly installed on a user's phone and then downloads other malware"These" dropper "trojans accounted for almost half of all mobile malware attacks between January and July 2020," said Aviran Hazum, a Check Point researcher.

"I expect the trend to continue in the new year", He even said and stressed that the users it must to download apps only from the official Google Play Store.

The Check Point research team said they have now found WAPDropper malware in applications called "af," "dolok", an email application called "Email" and a children's toy called "Awesome Polar Fishing" . The users who have downloaded these applications from stores outside Play Store, must remove them from the Appliances as soon as possible.

Source: ZDNet

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!

LIVE NEWS

Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...
00:02:35

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...