The Spy app for Android, has received the Spylend name, through the smartphone more than 100,000 users from the official Google Play store. The attackers disguised him with the financial software.
Spylend is included in a family of malware for mobile devices – SpyloanA special feature in which is a camouflage for financial applications or a loan service.
As a rule, such software is trying to connect users to light and fast loans with minimum requirements for attractive documents and conditions.
However, after the installation, the toxic resorts are required to allow them to block secret information, including call logs, SMS, photos and geographic positioning.
After that, all collected data used to bully victims, blackmail and other bad things.
Cyfirma experts accidentally see the application that simplifies finance, the authors promise users to simplify financial management. This software has been downloaded from Google Play Store more than 100 thousand times. There are other APKs related to this campaign: KreditaPple, Pokketme and Stashfur.
Currently, the application is deleted from Google Play, but on the infected smartphone, it will continue to operate in the background, collecting user information.
Simplify financially for the owner of the smartphone application for loans, download appropriate resources by using WebView and shifting users to third -party websites where the APK file download , the researchers write Report.