NaviSite named SVC 2014 Cloud Company of the Yea... » NaviSite takes home the top prize for its work with PMGC Technology Group Ltd. to deliver enterprise... Zylpha adopts Adobe EchoSign as E-Signature Soluti... » Zylpha has adopted Adobe EchoSign, an e-signature solution, that will allow Zylpha customers to incr... €1bn CONTRACT TO DEVELOP CUTTING EDGE RADAR FOR ... » A €1bn (approximately £800m) contract for the development of a new electronic radar system for the E... Game-changing threat intelligence service combin... » London: Complete cybersecurity service provider, SecureData has today launched SecureData GI (Greate... New cellular certification adds to Opengear’s out-... » Sandy, UT: Opengear has announced the addition of the ACM5504-5-GS-I and the ACM5508-2-GS-I remote m... Zertificon's decade of success » Berlin: On its 10th anniversary, IT-Security specialist Zertificon looks back on a successful decade... KREA enhances network capabilities with Claviste... » KREA, Turkey’s largest e-mail marketing company, has enhanced its network capabilities following a d... Patch Tuesday: Adobe update » Yesterday Adobe published the second update (APSB14-26) of Adobe Flash this month, an out of band re... Templar Executives awarded CESG certification fo... » Cyber security specialist Templar Executives has become one of the first organisations to gain accre... NBCS supports calls for collaboration in fight aga... » “We couldn’t agree more with the recent comments made by Georgina Barnard, TP Crime Reduction & Part...

CLICK HERE TO

Advertise with Vigilance

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Subscribe to Vigilance Weekly

Information Security Header

Russian cyber criminals draining mobile accounts with fraudulent malware scams

London: AdaptiveMobile, the world leader in mobile security, has uncovered a new mobile malware threat originating in Russia that is spreading across the globe. As part of AdaptiveMobile’s Ongoing Threat Analysis (OTA) which reports on global mobile security threats, the company has uncovered a series of scams first appearing in Russia, and now being seen across the globe, which involve criminals profiting by sending out text messages with web links to mobile malware.

When opened, these links automatically start downloading malware to a user’s phone, using what is known as the ‘drive-by’ download technique – the link downloads a fake app which applies premium rate services to the subscriber’s account when accessed.

A recent example spammed mobile users with SMS messages informing them that they had received an MMS message saying “I love you”.

“You have an incoming MMS with text “Anastasia, I love you!”. To view: http:// [redacted].org/9560.htm”

In Russia, the links were designed to look like the websites used by Russian operators and when clicked automatically downloaded an Android or J2ME version of a fake MMS viewer application on the phone. When opened, the app sent five SMS messages costing approximately £13 to premium short code numbers without informing the user. The app then displays a fake MMS with two pictures from an unspecified woman on a tropical beach. The Android version also intercepted and deleted confirmation messages from the short codes to hide the attack.

Users only reported this issue when a significant amount of money had been taken from their account, allowing the organisation to drain multiple accounts of small amounts before being discovered. This particular scam is believed to have generated a significant income for the criminals behind the scheme.

“SMS is still the most popular form of communication amongst adults and is highly trusted, making it very attractive to spammers looking to abuse that confidence,” says Ciaran Bradley, VP of Handset Security, AdaptiveMobile. “Although these scams are most prevalent in Russia, we’ve seen a number of copycat compound threats, using SMS and social engineering to deliver mobile malware to users’ phones via this ‘drive-by’ download technique, appearing across the globe. Whilst many operators already have measures in place to counter SMS spam, it is important that they are aware of these specific threats so that they ensure the correct action is taken.”