|
|
|
Malware steals mobile phone contacts
A rogue mobile app that steals a copy of the victim's mobile phone contacts had been found in both Google Play and the Apple App store.
Kaspersky said it was alerted to the app by a major Russian mobile-phone company. On initial investigation the Find and Call app for iPad, iPhone and Android devices, appeared to be a worm that sends a link to every number stored on the mobile handset through text messages, using the SMS (short message server) protocol.
Read more: Security articles | App articles
The link takes recipients to the rogue app in the Apple App Store and Google Play. Both Apple and Google have now removed the Find and Call app.
But deeper analysis by the security company found that the malware is far more serious. The Trojan uploads the contents of the address book to a server controlled by its author, from where the link to the app is sent.
It then replicates itself from the server by sending spam text messages to all the contacts in the phone's address book, with the URL in the application.
Although Google has been troubled with rogue apps, it is not so common for Apple to be hit by malware. However, rival antivirus firm, Sophos, said in a blog that it believed the app's author meant only for it to promote itself, not cause damage.
"That's pretty ugly behaviour, as there are no previous warnings or explanations for the user," said Sophos.
Article tags
Related articles
Cybercriminals are setting up get-rich-quick websites that download malicious software disguised as apps
UK premium rate regulator orders UK company, which made almost £28,000, to refund people who downloaded free rogue Android apps
Android users at risk of increasing risk, warn security companies
Content Recommendation
Q.Why is Windows Backup skipping files?
Q.Why do my scanned documents display gibberish?
Q.How can I convert MTS files to edit in Windows Movie...
Updating your subscription status 
Save money by switching to fast 3G broadband
