The App Store is detected malware, send spam

Malicious application on the App Store has become bad news for iOS-device users. Usually companies censors very carefully check every product before publication, but not this time. Dodgy developer (or developers) still beat Apple censorship, and some application Find and Call Hit the App Store. It is worth noting that its counterpart for Android was also revealed in the Google Play Store app.

On the problem of a Trojan horse for iOS and Android to employees "Kaspersky Lab" reported from the company MegaFon. At its core, Find and Call not arouse suspicion, if acquainted with the description of the software in the App Store. (Although those who drew attention to the comments from users would see a continuous stream of complaints about the software and 100% of the minimum estimate). So, Find and Call supposedly offers the user the ability to search for relevant users to make calls and not only to other rooms, but also in the social network, domains, e-mail accounts and Skype.

After you install and run the application, the user is required to enter your email address and mobile number. Next, Find and Call offers to search for the phone book to find friends and to contact them via the app - for free, bypassing the services (and tariffs) of the cellular operator. Once the owner of the smartphone grants permission for the processing of his phone book, Find and Call immediately It starts to send any and all customers from the contact list of spam messages next content.

Moreover, the entire phonebook is copied to a remote server, and will continue to be used by pests who created the Find and Call, other spam attacks. At the same time as the sender "junk" messages will appear as the victim of the actions of crooks user. That is to say, his friends will receive SMS-spam from someone they know and whom to trust.

After conducting its own investigation of Kaspersky Lab staff determined that the developer Find and Call is a certain Singaporean firm Wealth Creation Laboratory, which has a website at Network. The site user will be prompted to enter his account (probably tied to its e-mail-address and phone number phone) and enter additional data on their accounts in social networks, and even in the payment system PayPal! (In the latter case, it is assumed the possibility that people wish to fill up with PayPal your personal account in the Find and Call - perhaps to implement some kind of toll.)

Like Apple, and Google are already informed about the strange product. The app has been for some time is available in the App Store and Google Play, even when it has risen the hype around, but now it It has been removed in both stores.

The story of the violation of the Privacy Act very painful for Apple. That is why it seems strange how the same developers of the Trojan applications could "drag" it to the App Store.