Russia home to text message fraud "cottage industry"

Aug 02, 2013
Researchers have discovered that bilking people by infecting Android mobile phones with viruses has become a cottage industry in Russia in a criminal model that could be replicated elsewhere. While the text-messaging malware industry appeared centered in Russia, the model could be duplicated in other countries where conditions allow, according to Lookout Mobile Security.

Researchers have discovered that bilking people by infecting Android mobile phones with viruses has become a cottage industry in Russia in a criminal model that could be replicated elsewhere.

Members of Lookout Mobile Security were at the infamous Def Con hacker gathering in Las Vegas on Friday to share what they uncovered about a text-messaging fraud operation they dubbed "Dragon Lady" in reference to Cold War-era US military reconnaissance aircrafts.

"The mobile malware trade in Russia is highly organized and profitable," Lookout said, referring to designed to infect smartphones.

"We recently investigated a veritable industry of malware businesses with startup-like behaviors."

Businesses referred to as 'Malware HQs' accounted for more than half the overall mobile malware detections by Lookout during the first six months of this year, according to researcher Ryan Smith.

Malware HQs openly recruit 'affiliates' that could be anyone and provide simple do-it-yourself tools to distribute viruses with tactics such as booby-trapped websites or Twitter posts.

Once on smartphones, fire off premium text messages behind the scenes, with HQs getting the money and sharing it with affiliates who hooked the victims.

Lookout discovered that some HQs promote playful competition between affiliates with websites that show rankings and promise prizes for top performers.

"We've seen evidence that these affiliate marketers have earned between $700 a month to $12,000 a month from these scams," Smith said in a report summarizing Lookout's findings.

He estimated that there are thousands of individual distributors and potentially tens of thousands of affiliate websites promoting custom SMS malware.

"Malware HQs handle the tough stuff like releasing new Android code and configurations every two weeks, malware hosting, shortcode registration, and marketing campaign management tools," Smith said in his summary.

"Like any other large business, Malware HQ organizations provide customer support, post regular newsletters, report downtime or new features, and even run regular contests to keep their affiliates engaged and motivated."

Those falling prey to the were typically Russian speaking Android phone users searching online for free games, applications, music, videos or pornography, according to Lookout.

Pages rigged with malware are designed to reject visits from countries not targeted by the crooks, who prefer victims in places where fees for premium text messages are paid immediately instead of through billing by telecom service providers.

While the text-messaging malware industry appeared centered in Russia, the model could be duplicated in other countries where conditions allow, according to Lookout. gc/rcw

Explore further: Mobile malware explodes, hits corporate networks

add to favorites email to friend print save as pdf

Related Stories

Staggering surge in Android gadget viruses: Juniper

Nov 16, 2011

The arsenal of malicious code aimed at Android-powered gadgets has grown exponentially, with criminals hiding viruses in applications people download to devices, according to Juniper Networks.

'Phishing' scams explode worldwide, researchers shows

Jun 21, 2013

Those insidious email scams known as phishing, in which a hacker uses a disguised address to get an Internet user to install malware, rose 87 percent worldwide in the past year, a security firm said Friday.

Recommended for you

Microsoft expands ad-free Bing search for schools

10 hours ago

Microsoft is expanding a program that gives schools the ability to prevent ads from appearing in search results when they use its Bing search engine. The program, launched in a pilot program earlier this year, is now available ...

Growing app industry has developers racing to keep up

Apr 20, 2014

Smartphone application developers say they are challenged by the glut of apps as well as the need to update their software to keep up with evolving phone technology, making creative pricing strategies essential to finding ...

Android gains in US, basic phones almost extinct

Apr 18, 2014

The Google Android platform grabbed the majority of mobile phones in the US market in early 2014, as consumers all but abandoned non-smartphone handsets, a survey showed Friday.

Hackathon team's GoogolPlex gives Siri extra powers

Apr 17, 2014

(Phys.org) —Four freshmen at the University of Pennsylvania have taken Apple's personal assistant Siri to behave as a graduate-level executive assistant which, when asked, is capable of adjusting the temperature ...

Microsoft CEO is driving data-culture mindset

Apr 16, 2014

(Phys.org) —Microsoft's future strategy: is all about leveraging data, from different sources, coming together using one cohesive Microsoft architecture. Microsoft CEO Satya Nadella on Tuesday, both in ...

User comments : 0

More news stories

Amazon Prime wins streaming deal with HBO

Amazon scored a deal Wednesday to distribute old shows from premium cable TV channel HBO to its monthly Prime subscribers, landing a blow on rival Netflix in the streaming video battle.

Is nuclear power the only way to avoid geoengineering?

"I think one can argue that if we were to follow a strong nuclear energy pathway—as well as doing everything else that we can—then we can solve the climate problem without doing geoengineering." So says Tom Wigley, one ...