Kaspersky has malware found in the App Store and the Google Play Store. It is the first time that malware in the wild is found in the App Store. The trojan sends sms messages to all contacts of a user who has the app installed.
The application is called ‘Find and Call’, writes Kaspersky. The malware is targeting Russian users and occurs when legitimate voip software. After installation, upload the trojan to the phone book of the user to a remote server. From that server, with the sender for the affected user, all the contacts, send a text with a link to the application.
Or the malware continue to still do something about it or only to contacts where they came from, is unclear. According to Kaspersky, it is the first time in the App Store in the wild malware is detected, all managed beveiligingsonderzoeker there in november to malicious code in the App Store. The control applications in the App Store is much stricter than that in Googles Play Store.
Anyway, a Russian blog had contact with one of the authors of the malware, those who insist that it is not kwaadwaardige software. It seems to be a bug which spontaneously sms-messages to all the contacts were sent.
It is not unusual that applications address books of contacts unsolicited upload. Among others, Facebook, Twitter and Path were earlier this year sued because their mobile apps done this, all of which were apps not from the stores removed. Meanwhile the ‘Find and Call’application, however, disappeared from both applicatiewinkels, which could indicate that the actually to malware.
