Skip to main content

Google pulls dozens of apps from Android Market for SMS scams

android virus
Image used with permission by copyright holder

Google’s popular Android operating system appears to still be the mobile operating system of choice for fraudsters and malware authors: Google has just pulled dozens of apps from the Android Market because they trick European users into paying premium SMS charges. According to the mobile security firm Lookout, Google has removed 22 apps from the market for essentially being wrappers around a new RuFraud threat; Lookout says they’ve since found and reported an additional five apps bearing RuFraud to Google.

Some of the apps offer horoscopes or claim to be wallpaper apps for popular movies (including the Twilight series), while others purport to be downloaders for well-known games (like Angry Birds, Assassin’s Creed, Tetris, and Cut the Rope) or software that’s available for free from legitimate sources (like Opera Mobile). The apps present an initial screen where the only option for users is to continue; that is taken as consent to the apps’ terms of service. Buried deep in the TOS behind a number of obfuscating links are agreements to pay premium charges.

North American users would not have been impacted by the apps because the premium shot codes used by the apps are gated by country; however, users in a number of western and eastern European countries would have been susceptible to the apps.

Lookout reports some of the apps were removed very quickly with minimal exposure to Android Market users, but estimates some of the apps may have reached more than 14,000 people.

Lookout’s alert follows closely on a report from Juniper Networks that found a 472 percent increase in the incidence of Android malware since July 2011.

Editors' Recommendations

Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
Google is launching a powerful new AI app for your Android phone
Google Gemini app on Android.

Remember Bard, Google’s answer to ChatGPT? Well, it is now officially called Gemini. Also, all those fancy AI features that previously went by the name Duet AI have been folded under the Gemini branding. In case you haven’t been following up all the AI development flood, the name is derived from the multi-modal large language model of the same name.

To go with the renaming efforts, Google has launched a standalone Gemini app on Android. Moreover, the Gemini experience is also being made available to iPhone users within the Google app on iOS. But wait, there’s more.

Read more
How to remove malware and viruses from an Android phone

Just like your computer, your Android phone can fall victim to viruses and malware. These infections can slow your system down and create glitches that make it difficult to use your phone. Whether you’ve downloaded an infected app or visited a corrupted website, you have to stop it fast to protect your phone.

Fortunately, there are steps you can take to scan your phone and remove malware and viruses from your Android phone:

Read more
If you have one of these apps on your Android phone, delete it immediately
The app drawer on the Google Pixel 8 Pro.

The NSO Group raised security alarms this week, and once again, it’s the devastatingly powerful Pegasus malware that was deployed in Jordan to spy on journalists and activists. While that’s a high-profile case that entailed Apple filing a lawsuit against NSO Group, there’s a whole world of seemingly innocuous Android apps that are harvesting sensitive data from an average person’s phone.
The security experts at ESET have spotted at least 12 Android apps, most of which are disguised as chat apps, that actually plant a Trojan on the phone and then steal details such as call logs and messages, remotely gain control of the camera, and even extract chat details from end-to-end encrypted platforms such as WhatsApp.
The apps in question are YohooTalk, TikTalk, Privee Talk, MeetMe, Nidus, GlowChat, Let’s Chat, Quick Chat, Rafaqat, Chit Chat, Hello Chat, and Wave Chat. Needless to say, if you have any of these apps installed on your devices, delete them immediately.
Notably, six of these apps were available on the Google Play Store, raising the risk stakes as users flock here, putting their faith in the security protocols put in place by Google. A remote access trojan (RAT) named Vajra Spy is at the center of these app's espionage activities.

A chat app doing serious damage

Read more