Kaspersky Labs first announced its detection of what appeared to be the first of several SMS Trojans on Google's Android operating system on 9 August. The application released in Russian markets outside of Google's Android Market, was disguised as a media player. Once installed, the code would send 3 premium SMS messages, effectively transferring the US equivalent of ~$18 from the user to the recipient company.
On Wednesday, Kaspersky Labs expert Denis Maslennikov revealed a new Trojan very similar to the first. Again targeting Russian users, this app is disguised as a pornographic media player. What is interesting is not the recurrence of the premium SMS dialling (sending an SMS to a pay service, such as donation codes for the Red Cross, or ringtone services advertised on television), but the method in which installing the app is brought to users attention.
When the trojan is installed, it'll ask you to access Android's messaging system. If you deny it, the malicious portion of the code will not be allowed to function. It's a lesson in both trusting your application sources, and paying attention to mandatory security prompts for sure.
Remember that once you have given permission to an application, it rarely if ever will need to request permission again. The simple media browser in this case can wantonly send SMS messages whenever it is active, and you will be none the wiser, till you see the bill.
Win global festival tickets with Trident’s Perpetual FestivalApple to fix iPhone web based jailbreak vulnerability with update
