27/01/2012

Security firm Trend Micro has discovered a malicious app that is specifically targeting smartphone users running the Android operating system.

The app is a one-click billing scam that tricks its victims into registering and paying for a service after being led to a website set up by cyber criminals.

Previous one-click schemes have targeted all smartphone users, but ANDROIDOS_FAKETIMER.A specifically targets those running Google's OS through a blog site called Game Dunga that hosts adult content.

It steals Gmail account information, sim information and the mobile number of infected devices and sends them to the cybercriminals.

This information is then used against victims to build credibility and trick them into paying after sending repeated payment request messages every five minutes.

Noriaki Hayashi, senior threat researcher at Trend Micro, said: "Should users encounter a similar site, they are advised to leave the site immediately and not click any links to avoid getting victimised."