Unsuspecting user in pursuit of “Halava” installed software on his smartphone. After which the program requested access to the phone book. All numbers were then copied to the application authors server. Then all telephone numbers were sent SMS containing a link and suggesting the installation of the software. Moreover, the sender’s field reflected the telephone number of the host of the address book. If a person was following the link, they became part of the spam network, this resulted in two and a half thousand SMS being reported in the metropolitan region alone. The real scope of the spam network is not yet possible to estimate.
At the moment, the mobile operators have a dangerous link blocked. In Google Play and the App Store, the app may still be available, so it’s worth taking care.
Find & Call is able to steal an account in social networks, email services and PayPal payment system, provided that the user points out their data on the site of dangerous software.
The developers of the app deny their involvement in creating the spam network. The Find & Call authors say there has been a technical glitch in testing the beta version of the program. And SMS was sent not at the expense of the deceived user, but from the hardware of the creators of the software.
Apple will also have to strengthen the protection mechanisms of the App Store because of the recent history with a Russian hacker who was able to bypass the digital store payment system, simulating the purchase process and its confirmation.