Science and Tech

Harly Trojan hides in 190 Android apps to enroll users in unwanted paid services

Harly Trojan hides in 190 Android apps to enroll users in unwanted paid services

Oct. 5 (Portaltic/EP) –

Kaspersky researchers have detected over 190 apps on Google Play Store that imitate legitimate applications in order to get downloaded and installed and subsequently subscribe victims to unwanted paid services.

This malicious campaign used more than 190 Android applications that had more than 4.8 million downloads in the Google Play Store, from where they have already been removed after the warning from the cybersecurity company Kaspersky.

These ‘apps’ were disguised as legitimate applications that offered flashlight services, phone book, calls or mini-juices, to trick users into downloading and installing them on the mobile device, as explained in a press release.

Once installed, distributed the Trojan Harly that inadvertently managed to change the mobile network and contact a C&C server to set up a subscription listin which he introduced the victim’s phone number.

This enrollment in payment services included entering a confirmation code received via SMS or even performing a phone callwhich the Trojan carried out in the background, without attracting the user’s attention.

Part of the success of this campaign lies in “people’s enthusiasm for everything free”something that cybercriminals know and take advantage of through malware hidden in cracks, tricks and mods.

For this reason, Kaspersky insists that do not download ‘mods’ from suspicious sites or pirated ‘software’and highlight the importance of having an antivirus solution on the phone, especially one that doesn’t turn off with active video games.

Source link