The computer giant Microsoft warns about a malware in Android that without the consent of the users is making subscriptions to different services. The platforms of streaming they are the perfect example and they are already part of the daily life of most of us, being this, only one of the possible subscriptions that the malicious program could carry out.
How malware works:
East software unwanted (whose name has not been revealed), It typically performs the fraud using the Wireless Application Protocol (WAP). As This method allows you to subscribe by including it in the payment of the monthly phone bill.
This would be the normal process of a subscription authorized by the user:
HoweverEast malware disable WiFi connection Of the device or waits for the user to connect to a mobile network. To then enter the subscription web page and start the registration process.
In those cases where an authorization or use of a one-time password (OTP) is required. This will be intercepted and sent to the service provider by the malicious program, avoiding alerting the user.
Additionally, if the process includes notifications via SMS, these would also be deactivated by the program.
How do you enter the malware on your Android device?
By using dynamic code loading, the process of infecting the device is facilitated. This could be done by running the malware only if certain requirements are met.
An example of this is that the program may initially be installed without the virus, and after gaining a desired number of users, the virus is injected via an update.
What to do to mitigate this threat?
Previously this type of malware has been found in the Google Play Store, but given the progress it continuously makes, it is now indicated as a safe source of downloads, but it is always good to verify the identity of the developer before downloading any app.
There are also other Android app stores that would be more prone to this malware. For example, those Huawei devices that no longer have Google services can be a potential target.
Therefore it is recommended:
- Use stores and applications from safe sources.
- Keep your device up to date.
- Do not grant permissions if they are not consistent with the operation of the application.
- Use antivirus.
Finally, malware like this have been news since 2017, when the «Joker» family and its variants have performed these same types of actions, however, they have sophisticated the methods. Your options have also increased thanks to the increase in online subscription services and of course the number of Android devices.
Do you take any action against malware infections?