Kaspersky Issues High Alert for Android Users!
By Arijit Banerjee
Hacking, it seems is the new normal and it is only unusual to tread in a safe online zone, away from the reach of cyber felons. There’s a new threat looming on mobile phone users that steals money from a victim’s mobile phone. ‘Xafecopy Trojan’, as it is called gets installed on a mobile phone through app-installations. The threat that has been brought to light by Kaspersky Lab has been found to be targeting the WAP billing payment method.
How it Makes its Way to Your Phone?
It has been found that the app disguises itself in popular utility apps like BatteryMaster and avoids any sort of suspicion by performing chore activities such as cleaning phone memory and detecting heavy apps that drains the battery faster.
What Happens Once you Install the App?
As per the report published by Kaspersky, once the Trojan is installed, the Xafecopy malware keeps a tab on the webpages via wireless Application Protocol (WAP) billing which is a form of a mobile payment that charges a fee directly to the user’s mobile phone bill without their knowledge.
Long Term Implications
The Xafecopy Trojan does not stop after an attack and will continue to subscribe your phone to numerous services. Moreover, the process does not require users to register their debit or credit cards and set a username and password. It uses deceptive techniques to evade the ‘captcha’ security measures which makes it go unnoticed.
Impact till Now
Till now the Trojan has been detected across 47 countries and shockingly a whopping 40% of these attacks have been carried out in India. Kaspersky has reportedly neutralised 37.5% of the total attacks spanning across India, Mexico, Russia and Turkey.
‘Kaspersky has warned Android Mobile Users, as they are more vulnerable to the Xafecopy Trojan.’
Kaspersky has warned Android Mobile Users, as they are more vulnerable to the Xafecopy Trojan. They have further advised Android users to be careful while downloading mobile apps. In their report, Kaspersky stated, "It is best not to trust third-party apps, and whatever apps users do download should be scanned locally with the Verify Apps utility. But beyond that, Android users should be running a mobile security suite on their devices,"
How to protect Your Phone?
- Do get a latest firmware update.
- Do use an anti-virus software.
- Do not open email from anonymous or unknown people.
- Do not install apps from unfamiliar developers.
Growing Importance of Cyber Security
With cyber insecurities shrouding our online existence, it’s high time to be cautious and be ahead in the game. Leaders from the world of cyber security are emphasising on the widening gap in the number of cyber security professionals that are required to keep us safe, online.