Android users got no break; most of the scams targets Android OS only.
For two years, asubscription scam called Dark Herring for Androidis operating.
It hasaffected more than 100 million usersglobally.
The malware-infected apps were installed by around 105 million users in 70 countries.
The premium services cost about $15 per month via a mechanism called Direct Carrier Billing (DCB).
The users realized the fraud charges later, around a few months after infection.
The main issue with DCB is that you only find out what you paid when your monthly bill comes.
So, victims dont know when they are scammed.
The scammers steal quite a bit of money.
Zimperium zLabs, a Google partner and a member of Google App Defense Alliance, discovered the Dark Herring.
They tackle the malware problem on Play Store.
The researchers say it is very sophisticated malware; it uses a few layers of anti-detection and code obfuscation.
It worked differently in each app it was spread to.
The infected apps didnt have malicious code embedded in them.
The page asked users to confirm their login by entering their phone numbers.
According to Zimperium, India is at a higher risk of such fraud.
The most popular Dark Herring apps are:
To check out all the apps visit,this GitHub page.
