• Contact Us
  • Privacy Policy
  • Terms of Use
  • DMCA
Friday, March 24, 2023
TheGreatNews.com
  • Home
  • MINDSET
  • WELL BEING
  • POSITIVE NEWS
  • WISDOM
  • PURPOSE
  • NEW TECHNOLOGIES
  • More Topics
    • ENTREPRENEUR
    • GREEN ENERGIES
    • SUCCESS
    • GOOD LIFE
No Result
View All Result
  • Home
  • MINDSET
  • WELL BEING
  • POSITIVE NEWS
  • WISDOM
  • PURPOSE
  • NEW TECHNOLOGIES
  • More Topics
    • ENTREPRENEUR
    • GREEN ENERGIES
    • SUCCESS
    • GOOD LIFE
No Result
View All Result
TheGreatNews.com
No Result
View All Result

Avoid These ‘Toll Fraud’ Apps on Android

in GOOD LIFE
Reading Time: 6 mins read
A A
Avoid These ‘Toll Fraud’ Apps on Android
Share Share Share Share Share

Image for article titled Avoid These 'Toll Fraud' Apps on Android

Photo: Stokkete (Shutterstock)

Older Android phones are a known security risk, but recent research from Microsoft’s 365 Defender Research Team shows just how vulnerable the outdated devices are vulnerable to a serious form of malware known as “toll fraud.”

Toll fraud malware hides in normal-looking apps, quietly signing up users for premium subscription services through the user’s phone service. We’re not talking covert Netflix subs, here: Instead, victims are signed up for useless services that can cost hundreds of dollars or more each year.

Microsoft’s research shows devices running Android 9 and older are the most at risk for such attacks, but we’ve seen similar exploits affect newer versions of Android as well. Worse, hackers are constantly changing how these attacks work, allowing malicious apps to circumvent Google Play’s security measures. That means there could be scores of toll fraud apps (along with other types of malware) hiding in the Google Play Store listings right now—which is why it’s important for all Android users to know how to spot the problem before it becomes one.

What is toll fraud?

Microsoft has a comprehensive breakdown of how toll fraud works, but the common attack happens in three stages.

First, the user downloads a seemingly safe app from Google Play or a third-party app distributor. Once the app is installed, it updates itself with new, malicious code that would normally flag Google Play’s security checks.

Once updated, the app performs the second phase of the attack, which includes a few different steps, such as using fake login pages and a Wireless Application Protocol (WAP) to sign you up for the unwanted services. (WAPs are a legitimate tool apps use to sign users up for services through their phone service rather than through a payment card or other billing options, but they’re clearly prone to abuse.)

Since WAPs require a cellular connection, the fraudulent app will often wait for the infected device to use wireless data instead of wifi connections. In some cases, these apps will even force the phone to connect to cellular data, even if a wifi connection is available.

For the last part of the attack, the app intercepts and blocks SMS confirmation—the messages you’d normally receive after signing up to WAP services legitimately—so you won’t know anything is wrong until you check your phone bill and see the unexpected transactions.

How to prevent toll fraud malware attacks

Toll attacks like this happen silently in the background, making them extremely difficult to catch. Microsoft’s research team outlined ways Google can continue to enhance its security features to prevent toll fraud and similar forms of malware, but there are also few ways users can prevent these attacks on their own.

Obviously, the most important thing is to keep your devices updated with the latest versions of Android and all security patches. As we mentioned above, devices running Android 9 and earlier are the most at risk. If possible, update to Android 10 or later and install the latest security patches available to you.

Of course, updating to a newer version of Android isn’t possible for all devices, and buying a new phone to replace your outdated one may not be either. Plus, we’ve seen similar attacks on newer versions of Android, such as the “Joker” malware; it’s also possible (indeed, likely) that new forms of toll fraud could target newer Android phones in the future.

That’s why you should always thoroughly vet an app before downloading. Read reviews (not just the top-rated, but the low ratings, too), research the app online, and only download apps from trusted sources. Similarly, installing a trustworthy anti-malware app may allow you to intercept sketchy apps before they can do anything.

That said, many shady apps do look legit, which is why you still need to watch for red flags after installing an app. Common characteristics of malicious apps and trojans include:

  • Seemingly random login pages requesting to link a social media or email account.
  • Unnecessary app permissions.
  • Requests to install additional software or updates that don’t come through the Google Play store.

That’s not an exhaustive list, but they’re common indicators of an unsafe app. Be sure to check our guides on spotting other types of internet scams and malware for more tips.

[Android Central]

  

Credit: Source link

Related articles

Your New Favorite Jamaican Restaurant

Best Side Hustles in Real Estate to Earn Profits 

ShareTweetSendPinShare
Previous Post

Games Done Quick bans Metal Gear speedrunner for faking world record

Next Post

Modern Love Podcast: ‘Do It, I Dare You.’

Related Posts

The Best 🇯🇲 Jamaican Food

Your New Favorite Jamaican Restaurant

March 10, 2023

If you're on the hunt for Jamaican cuisine in New Jersey, Top Taste Caribbean Restaurant should be at the top of your list. As a black-owned...

Best Side Hustles in Real Estate to Earn Profits 

Best Side Hustles in Real Estate to Earn Profits 

January 30, 2023

  If you want to make money in today's economy, you must do modern work, which is why everyone should have a side hustle. With the...

How to Get 100% of Your Student Loans Forgiven Through the Borrower Defense Program

How to Get 100% of Your Student Loans Forgiven Through the Borrower Defense Program

August 30, 2022

Photo: fizkes (Shutterstock)Last week, President Biden announced that millions of Americans may be eligible for up to $10,000 in federal student loan forgiveness—up to $20,000 for...

Salvaging crops and tackling a broken food system: meet the ‘gleaners’

Salvaging crops and tackling a broken food system: meet the ‘gleaners’

August 30, 2022

Across Britain, people are coming together to salvage unpicked produce. Addressing food poverty and farm waste, it’s a timely response to the cost of living crisis...

Two Things You Should Always Keep by Your Cutting Board While You Cook

Two Things You Should Always Keep by Your Cutting Board While You Cook

August 29, 2022

Cleaning as you go is widely regarded as one of the best ways to mitigate cooking mess. Loading dishes into the dishwasher as you’re done with...

Next Post
Modern Love Podcast: ‘Do It, I Dare You.’

Modern Love Podcast: ‘Do It, I Dare You.’

This Is How Leaders Can Make the Best of Remote Working

This Is How Leaders Can Make the Best of Remote Working

Forget Tesla; Buy This Top-Rated Auto Stock Instead

Forget Tesla; Buy This Top-Rated Auto Stock Instead

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Weekly Updates

Exploring the Wisdom of Colombia: Lessons from a Vibrant Culture

Exploring the Wisdom of Colombia: Lessons from a Vibrant Culture

March 17, 2023
TheGreatNews.com

This is an online news portal that aims to provide the latest updates about mindset, well being, positive news, wisdom, purpose, new technologies, entrepreneur, green energy, success, good life and stuff like that around the world. Feel free to get in touch with us!

© 2021 - TheGreatNews.com - All rights reserved!

  • Contact Us
  • Privacy Policy
  • Terms of Use
  • DMCA
No Result
View All Result
  • Home
  • MINDSET
  • WELL BEING
  • POSITIVE NEWS
  • WISDOM
  • PURPOSE
  • NEW TECHNOLOGIES
  • More Topics
    • ENTREPRENEUR
    • GREEN ENERGIES
    • SUCCESS
    • GOOD LIFE

© 2021 - TheGreatNews.com - All rights reserved!