Malware on the smartphone: thousands fall victim to dangerous spam SMS every day

Many cell phone users are falling into an SMS trap set by online criminals, current figures from network operators show. Increasingly, the fraudulent messages are also spreading via messengers such as WhatsApp.

Several thousand German customers of all major mobile providers are currently falling victim to dangerous spam text messages every day. Deutsche Telekom alone records an average of 7,000 to 8,000 customers a day who click on links contained in such text messages and infect their phones with malware. The figures come from analyses by the company's IT security experts, as a Telekom spokesperson explained when asked.

The experts also observe that attackers have increasingly tried to spread the spam messages via messengers such as WhatsApp or Telegram in recent days. Often, the text messages pretend to come from parcel delivery companies. Instead of information about a delivery status, the links lead users to hijacked websites where users of Android devices are asked to download a dangerous app. This hijacks the device so that it sends spam SMS messages itself.

The websites automatically detect whether the victims are using an Android smartphone and prompt them to install the malicious software only in that case. The attackers also often try to trick victims into revealing personal information in order to use it for further attacks, such as credit card fraud. This scam can also be dangerous for iOS users.

The leak full of Facebook data exacerbates the situation

"The perpetrators adapt their attacks to the habits of customers in Germany," explains a Telekom spokesperson. Among other things, they oriented themselves to when their target group is online and likely to respond to short messages. According to Telekom security analysts, bot networks known as MoqHao and Flubot are behind the attacks.

In the Vodafone network, a total of four-digit numbers of customers were also affected last month, the company said on request. Telefónica (O2) spoke of a low five-digit number in the period. It is working with law enforcement agencies to identify the perpetrators, a spokesman said.

Police authorities last warned of the fraudulent messages after it became known that phone numbers of millions of Facebook users were circulating on the net. "Since the Facebook leak became known over the Easter weekend, we have seen that the phishing text messages often include a personal salutation," a Vodafone spokeswoman said. Although Vodafone has been observing SMS spam campaigns for some time, the leak increases the risk that those affected do not question the credibility of these SMS and click on the link.

Comments

Post a Comment

Popular posts from this blog

Chrome targeted by criminals: Why users need to update quickly now

A security vulnerability in Google Chrome is currently being exploited by cyber criminals. Malware could land on your PC through it. Read here how you can protect yourself. The Google Chrome browser is currently struggling with some security vulnerabilities. In a blog post , Google warns about a total of seven vulnerabilities, with the majority of these gaps being classified as a "high" threat to users. The vulnerabilities have been fixed in the latest version of Chrome for Windows, Linux and macOS. If you have Chrome version 90.0.4430.85 installed, it can no longer be exploited. If you have an older version of the browser installed, you should update urgently. You can find the download of the new version below these lines. Smartphone users do not have to be afraid of the security vulnerability. Google has not had to take any security measures here for the time being. The security vulnerability probably remained undiscovered by cyber criminals for the time being. So far, noth...
Read more

BKA spying software: Freedom activists file data protection complaint against use of Pegasus

A few weeks ago, it became known that the German Federal Criminal Police Office is one of the customers of the Israeli NSO Group and uses its Pegasus Trojan. The Society for Civil Liberties sees this as a violation of fundamental rights - and is calling for a review by the Federal Data Protection Commissioner. The Society for Civil Liberties (GFF) has filed a complaint with the Federal Data Protection Commissioner Ulrich Kelber against the use of the Pegasus spying software in Germany. At the beginning of September, it had become known that the Federal Criminal Police Office had also procured the spying software from the Israeli company NSO Group and has been using Pegasus since the beginning of the year. The BKA states that this is a heavily scaled-down version of the spying software. But even this version violates current regulations, according to GFF. "By using the Trojan, a private, foreign company, which presumably also spies on journalists and human rights activists on behal...
Read more

Face and voice recognition: Why TikTok wants to be allowed to collect biometric data in the USA

TikTok's privacy policy for the US now mentions the collection of biometric data from faces and voices. The background is likely to be a legal dispute that cost the company $92 million. Neue Datenschutzbestimmungen sind oft eher etwas für Juristen, doch die jüngste Aktualisierung von TikTok sollte alle Nutzerinnen und Nutzer in den USA aufhorchen lassen. Denn in den am 2. Juni aktualisierten Datenschutzbestimmungen für die USA ist ein Abschnitt enthalten, den es zuvor nicht gab. Er lautet übersetzt: »Wir sammeln möglicherweise biometrische Identifikationsmerkmale und biometrische Informationen, wie sie im US-Recht definiert sind, wie etwa von deinem Gesicht und deiner Stimme, aus deinen Inhalten.« Im englischsprachigen Original ist von »faceprint« und »voiceprint« die Rede. »Bevor wir damit anfangen«, frage man jedoch nach dem Einverständnis, wenn dies gesetzlich nötig sei, fügte noch TikTok hinzu. In response to an initial inquiry from "TechCrunch" about the ba...
Read more