Microsoft's research team has recently warned of malware that can enroll users in paid services without them noticing.
This fraud is achieved by uploading code to infect devices. Once the malware has been introduced, connects to a network that subscribes to fraudulent premium services without the user's consent. This is achieved by intercepting verification SMS.
Due to current cloaking techniques, It is difficult to detect it on mobile. The victim will detect charges on the phone bill, since this malware does not use credit cards to extract money.
It is possible to avoid this malware if you do not access application stores external to the official ones such as Google Play. It is also advisable not to grant read permissions to SMS to applications that are not very clear about what you need them for.
Fountain: Digital Shield
Image of Mohamed Hassan in Pixabay