The Register® — Biting the hand that feeds IT

Feeds

French cops cuff man over €500K Android Trojan scam

Suspect had wanted to earn his crust as software dev

By John Leyden, 19th October 2012
  • print
  • alert

Regcast training : Hyper-V 3.0, VM high availability and disaster recovery

French police have arrested a 20-year-old man who allegedly earned €500,000 (£405,00, $650,000) through an Android malware scam.

The unnamed perp from the Amiens region allegedly tricked 17,000 victims into installing a Trojan that posed as a legitimate application on their Android smartphones. In reality, the malicious application sent SMS messages to premium rate numbers, allegedly earning the suspect a tiny slice for each SMS. Victims were left none the wiser until they received bills charging them for the fraudulent transactions.

The malware also stole login details for gaming and gambling websites. The suspect, who reportedly began his involvement with the scam last year, has admitted responsibility but told investigators he was motivated by technical curiosity and ambitions to become a software developer rather than greed, the BBC reports.

Android SMS malware is not a new problem. Most reported incidents have happened in either Russia or China but there are precedents for this sort of malfeasance in France. Trojan apps typically pose as popular mobile games, such as Angry Birds, or useful* utilities, such as Instagram.

Back in February, French cops cuffed two men linked to the distribution of the Foncy Trojan, another strain of malware that sent expensive SMS messages from infected Android smartphones.

More commentary on the security aspects on the case can be found in a blog post by Sophos here. ®

*Yes, we know, we'll be hearing from you in the comments...

Agentless Backup is Not a Myth

COMMENTS

House Rules Send Corrections
All Reader Comments (24)
Highly Rated
Anonymous Coward
Anonymous Coward
Reply Icon

Re: Malware authors ....

And that includes the witless pillocks who insist on bundling useless bloody toolbars and McAfee etc., sodding software as completely unrelated, unnecessary and unwanted, yet preselected installs, with bloody Acrobat Reader and Java updates.

Malware is as malware does, and that's bloody malware

9
0
DJ Smiley
Reply Icon

Re: Malware authors ....

7. Forced to code in Visual Basic.

4
0
Da Weezil

"And that includes the witless pillocks who insist on bundling useless bloody toolbars and McAfee etc., sodding software as completely unrelated, unnecessary and unwanted, yet preselected installs, with bloody Acrobat Reader and Java updates."

..... and Google bloody Chrome.. the one way to ensure I NEVER try a piece of software is to try to ram it down my throat everywhere I go (acrobat) or sneak it in with a pre-selected (but still unwanted) option during in an install.

3
0

More from The Register

breaking news
Number of cops abusing Police National Computer access on the rise
Only a telegram from the Queen can get you off it
135
breaking news
NSA PRISM snoop-gate: Won't someone think of the children, wails Apple
10,000 things probed, mostly about missing kids, Alzheimer patients, we're told
96
Flash flaw potentially makes every webcam or laptop a PEEPHOLE
But it's a Google problem - Chrome only, insists Adobe
60
breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
breaking news
Yahoo! joins! rivals! in! PRISM! data! request! admission!
Keep calm and carry on using American tech firms, folks
41
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17
breaking news
'BadNews is malware' says outfit that found it
Google says code harmless but Lookout says code base is evolving
15