“The Russian cyber security company, Kaspersky Lab specialists have discovered a malware for mobile devices targeting the WAP billing payment method, theft of money through the victims mobile without their knowledge,” the report says. Xafecopy Trojan disguised as useful applications like BatteryMaster and works normally. The secret trojan loads malicious code on the device. Once the application is activated, the Xafecopy malware clicks on web pages with the Wireless Application Protocol (WAP) of the billing of a mobile payment method that charges costs directly to the user. After this, the malware quietly subscribes the phone to a number of services, the report said. The process also requires the user to register a debit card or credit card or set a username and password. The malware uses bypass technology ‘captcha’ systems designed to protect users by confirming the action performed by a human. In the captcha system, websites display a set of some letter or numbers that are required to be filled manually by the user. “Xafecopy affected more than 4,800 users in 47 countries within a month, with 37.5% of the attacks detected and blocked by the Kaspersky Lab products targeting India, followed by Russia, Turkey, and Mexico,” one of the security researchers of Kaspersky said. The security company Kaspersky Lab Experts have found traces that show cyber criminals promising other Trojans that are simply sharing the malware code between them. “Our research suggests WAP billing attacks are on the rise. Xafecopy attacks aimed at countries where this method of payment is very popular. The malware has also been detected with different modifications, such as the ability to send text messages from a mobile device, and to eliminate incoming text messages to hide alerts from the mobile network to the operators on stolen money,” Kaspersky Lab Senior Malware Analyst Roman Unuchek said. The security firm Kaspersky Lab’s, Managing Director of South Asia, Altaf Halde said that Android users should be extremely careful in the way they download applications. “It is best not to rely on third-party applications, and what users of Google apps download should be scanned locally with the verification of useful applications. But beyond that, Android users should run a mobile security suite on their devices. So, what do you think about this severe malware? Simply share your views and thoughts in the comment section below.
Δ