Duo arrested over $148,000 Android malware scam

Powered by SC Magazine
 

Two men have been arrested on suspicion of developing mobile malware that ended up on more than 2000 Android devices.

Two men have been arrested on suspicion of developing mobile malware that ended up on more than 2000 Android devices.

According to a report by French website linformaticien.com, the two unnamed men were arrested in Bobigny and only identified as a "brain" and a "technician"; they are accused of conning users out of an average of €20 to €30. French authorities estimate that the total scam amounted to €100,000 ($A147,708).

The malware used in this instance was the Foncy Trojan, which spreads via file-hosting website ‘SuiConFo.apk' and, after installation, appears on the main menu of Android smartphones and sends four SMS messages to premium-rate numbers.

According to a blog by Kaspersky Lab mobile malware expert Denis Maslennikov, after defining the country, number and text, the four SMS messages are sent with the help of the sendTextMessage method.

“The Trojan will send an SMS message to a French cell-phone number with the text taken from a reply from a premium-rate number. This may help the cyber criminals find out how many premium SMS messages have been sent,” he said.

The report by linformaticien.com claimed that a judicial inquiry has been opened by the prosecutor of Bobigny, with charges for organised fraud and possession of malware.

Graham Cluley, senior technology consultant at Sophos, said: “More recently, Foncy has also appeared in the form of a fake EA Sports game, exploiting a vulnerability to root the phone, sending SMS messages and silently joining an IRC channel to receive further commands from remote hackers.

“According to the French authorities, the two men alleged to be behind the malware earned up to €100,000 from the scheme. Is it any wonder we are seeing an increase in Android malware activity, if the bad guys are making money out of it?”

This article originally appeared at scmagazineuk.com

Copyright © SC Magazine, UK edition


Duo arrested over $148,000 Android malware scam
 
 
 
Top Stories
ANZ looks to life beyond the transaction
If digital disruptors think an online payments startup could rock the big four, they’ve missed the point of why people use banks, says Patrick Maes.
 
What InfoSec can learn from the insurance industry
[Blog post] Another way data breach laws could help manage risk.
 
A ten-point plan for disrupting security
[Blog post] How can you defend the perimeter when it’s in the cloud?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  29%
 
Application integration concerns
  3%
 
Security and compliance concerns
  27%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  21%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  4%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 1044

Vote