Great Moto G Stylus deal on Amazon!
PhoneArena unveils the ultimate collector’s book for phone enthusiasts
PhoneArena unveils the ultimate collector’s book for phone enthusiasts

New Android malware for fraudulent subscriptions discovered by Microsoft

By
0comments
Android Microsoft
New Android malware for fraudulent subscriptions discovered by Microsoft
The security team from Microsoft's 365 Defender Research undertaking has discovered a new type of money-grabbing Android malware that aims to steal your hard-earned cash with one of the most dangerous methods ever devised - subscribing you for paid services on its own volition.

The so-called toll fraud method uses the ancient Wireless Application Protocol (WAP) protocol that connects you to the mobile Internet and that your carrier uses to charge you for legitimate services like Spotify or even HBO Max.

Upon disconnection from a Wi-fi network, the new malware opens a subscription page and fills in your details, including any one-time passwords that are needed. This happens while text messaging services are temporarily disabled so you don't get any subscription notification until you get your monthly phone bill and get surprised. 

Alternatively, you just pay without looking and the scam goes on for months. The Android malware is written in a way that it will look like an average service to the unsuspicious user, hiding behind unnecessary permissions. 

"Variants of toll fraud malware targeting Android API level 28 (Android 9.0) or lower disable the Wi-Fi by invoking the setWifiEnabled method of the WifiManager class. The permissions needed for this call are ACCESS_WIFI_STATE and CHANGE_WIFI_STATE. Since the protection level for both permissions is set to normal, they are automatically approved by the system," say Microsoft's researcher.

If an app that is designed to do something totally unrelated asks for text messaging permissions, say the researchers, this should immediately raise your level of suspicion. The best way to avoid the new toll fraud Android malware, says Microsoft, is simply to run a phone with Android 10 or later. 

Recommended Stories
Up until Android 9, these types of apps could skirt away undetected so if you are running an older Android version, you'd better update your phone, or if there isn't any update for it anymore, at least install some sort of security application on it.
https://m-cdn.phonearena.com/images/users/59-200/Daniel-P.jpg
Daniel Petrov Senior Mobile Tech Journalist and Reviewer
Daniel, a devoted tech writer at PhoneArena since 2010, has been engrossed in mobile technology since the Windows Mobile era. His expertise spans mobile hardware, software, and carrier networks, and he's keenly interested in the future of digital health, car connectivity, and 5G. Beyond his professional pursuits, Daniel finds balance in travel, reading, and exploring new tech innovations, while contemplating the ethical and privacy implications of our digital future.

Recommended Stories

Loading Comments...

Popular stories

Apple warns iPhone users about overnight iPhone charging
Apple warns iPhone users about overnight iPhone charging
Next time you contact T-Mobile, you'll probably be assisted by an employee with 'superpowers'
Next time you contact T-Mobile, you'll probably be assisted by an employee with 'superpowers'
Verizon customers need to be on red alert as a phishing campaign aims to steal their money
Verizon customers need to be on red alert as a phishing campaign aims to steal their money
Samsung's killer Galaxy Watch 6 Classic trade-in deal comes just in time for Mother's Day
Samsung's killer Galaxy Watch 6 Classic trade-in deal comes just in time for Mother's Day
T-Mobile is now going to dictate where you can use its 5G internet
T-Mobile is now going to dictate where you can use its 5G internet
Why in the world would I pay top dollar for the Galaxy S24 Ultra if it gets left behind by Samsung?
Why in the world would I pay top dollar for the Galaxy S24 Ultra if it gets left behind by Samsung?

Latest News

The way you handle your iPhone apps could be hurting battery life and performance
The way you handle your iPhone apps could be hurting battery life and performance
HTC could launch another mid-range smartphone this summer
HTC could launch another mid-range smartphone this summer
Keyboard apps used by one billion users found to have a flaw that exposes keystrokes
Keyboard apps used by one billion users found to have a flaw that exposes keystrokes
Major leak reveals images, video, release date of Apple's new Beats Solo Buds and Beats Solo 4
Major leak reveals images, video, release date of Apple's new Beats Solo Buds and Beats Solo 4
OnePlus Nord 4 and Nord CE4 Lite key specs leaked
OnePlus Nord 4 and Nord CE4 Lite key specs leaked
Apple removes three apps from App Store that claimed in ads they could create AI porn
Apple removes three apps from App Store that claimed in ads they could create AI porn
FCC OKs Cingular\'s purchase of AT&T Wireless