An Android malware that automatically subscribes you to premium services without you knowing it has been reported by the Microsoft 365 Defender Team.
The elaborate attack has a few steps to execute before it affects you. Apps that have the malware in them are usually classified as “toll frauds” that uses “dynamic code loading” as means to begin the attack by subscribing you to a premium service via your telecom bill forcing you to pay.
The said malware works by exploiting the WAP (wireless application protocol) used by cellular networks sometimes being the cause of your WiFi being disabled after going out of WiFi range.
Furthermore, the dynamic code loading will then come into play then subs you to a service then reads the OTP (one-time-password) you received then ultimately fills out the OTP field without your knowledge, and also hides any notification to hide its activity even further.
Fortunately, this malware is usually coming from apps outside Google’s Play Store because the company does not allow the use of dynamic code loading by apps. So be careful when side-loading Android apps or installing apps outside of the Play Store.
Started his freelancing adventure in 2018 and began doing freelance Audio Engineering work and then started freelance writing a few years later.
Currently he writes for Gadget Pilipinas and Grit.PH.
He is also a musician, foody, gamer, and PC enthusiast.