'ExpensiveWall' Attacks More Than 1 Million Android Users'ExpensiveWall' Attacks More Than 1 Million Android Users
New Android malware variant registers users for paid services without their permission and sends bogus premium SMS messages.
September 14, 2017

A new Android malware variant called ExpensiveWall gains remote access to users' phones and sends fraudulent premium SMS messages, racking up paid service charges, Check Point's mobile threat research team disclosed today.
The malware infiltrated Google Play and infected at least 50 apps, which were downloaded between 1 million- to 4.2 million times before Google removed them.
ExpensiveWall, named after the "Lovely Wallpaper" app it infected, signs up users to premium services without their knowledge once it's downloaded. It then sends bogus premium text messages, which are then charged to users' accounts.
The malicious app is a new variant of a Trojan photo app found on Google Play earlier this year that signs up users for premium services, but ExpensiveWall's advanced obfuscation techniques to avoid Google Play's automatic anti-malware protections sets it apart from other variants in the malware family.
Read more about ExpensiveWall and the details of its attack method here.
Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.
Read more about:
2017About the Author(s)
You May Also Like
Modern Supply Chain Security: Integrated, Interconnected, and Context-Driven
Nov 06, 2023How to Combat the Latest Cloud Security Threats
Nov 06, 2023Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and Phishing
Nov 01, 2023SecOps & DevSecOps in the Cloud
Nov 06, 2023What's In Your Cloud?
Nov 30, 2023