Tuesday, August 16, 2022

ਵਾਹਿਗੁਰੂ

spot_img











This Android malware switches off Wi-Fi and drain mobile wallet

New Delhi, July 2, 2022- Microsoft has alerted users of “toll fraud” malware on Android that can drain your mobile wallet by switching off Wi-Fi connection.

Compared to other subcategories of billing fraud, which include SMS fraud and call fraud, toll fraud has unique behaviours.

According to Microsoft 365 Defender research team, whereas SMS fraud or call fraud use a simple attack flow to send messages or calls to a premium number, toll fraud has a complex multi-step attack flow that malware developers continue to improve.

“For example, we saw new capabilities related to how this threat targets users of specific network operators. It performs its routines only if the device is subscribed to any of its target network operators,” warned the company.

It also, by default, uses cellular connection for its activities and forces devices to connect to the mobile network even if a Wi-Fi connection is available.

Once the connection to a target network is confirmed, it stealthily initiates a fraudulent subscription and confirms it without the user’s consent, in some cases even intercepting the one-time password (OTP) to do so.

“It then suppresses SMS notifications related to the subscription to prevent the user from becoming aware of the fraudulent transaction and unsubscribing from the service,” Microsoft explained.

Another unique behaviour of toll fraud malware is its use of dynamic code loading, which makes it difficult for mobile security solutions to detect threats.

Despite this evasion technique, the team identified characteristics that can be used to filter and detect this threat.

“We also see adjustments in Android API restrictions and Google Play Store publishing policy that can help mitigate this threat,” said the company.

“A rule of thumb is to avoid installing Android applications from untrusted sources (sideloading) and always follow up with device updates,” Microsoft advised.

“Avoid granting SMS permissions, notification listener access, or accessibility access to any applications without a strong understanding of why the application needs it,” it added.  (Agency)

Subscribe to YesPunjab Telegram Channel & receive Important News Updates

- Advertisement -

Yes Punjab - TOP STORIES

Punjab News

Sikh News

Transfers, Postings, Promotions

- Advertisement -spot_img

Stay Connected

28,358FansLike
113,947FollowersFollow

ENTERTAINMENT

National

GLOBAL

OPINION

Gilli-Danda: Comeback of 75 indigenous sports – by Narvijay Yadav

Under the ‘Azadi Ka Amrit Mahotsav’ the central government has stepped up the plan to introduce 75 indigenous sports in all schools. The popular...

Is the world sliding into a Chernobyl-plus nuclear disaster in Ukraine? – by Sergei Strokan

New Delhi, Aug 13, 2022- Tensions around the Zaporozhye nuclear power plant in Ukraine reached a climax by the weekend, after three more missiles...

When careers are sacrificed for advertisement billboards and statistics – by Vinit Goenka

Back in 1859, Macaulay's education system came into effect intending to colonise education and create a class of anglicised Indians. Post-Independence, India tried to...

SPORTS

Health & Fitness

Rise in pregnancy-related complications during Covid pandemic

New York, Aug 13, 2022- Covid-19 has caused unprecedented stressors as a new study showed a rise in pregnancy-related complications during the pandemic. The study, published in the journal JAMA Network Open, assessed how pregnancy-related complications and obstetric outcomes changed during Covid compared to pre-pandemic. Looking at the relative changes in the mode of delivery, rates of premature births and mortality...

Gadgets & Tech

error: Content is protected !!