A new malware Xafecopy Trojan has been detected in India which steals money through victims’ mobile phones, cyber-security firm Kaspersky said in a report.
Around 40 percent of target of the malware has been detected in India.
“Kaspersky Lab experts have uncovered a mobile malware targeting the WAP billing payment method, stealing money through victims’ mobile accounts without their knowledge,” the report said.
Once the app is activated, the Xafecopy malware clicks on web pages with Wireless Application Protocol (WAP) billing – a form of mobile payment that charges costs directly to the user’s mobile phone bill. After this the malware silently subscribes the phone to a number of services, the report said.
The process also does not require user to register a debit or credit card or set up a user-name and password.
“Xafecopy hit more than 4,800 users in 47 countries within the space of a month, with 37.5 percent of the attacks detected and blocked by Kaspersky Lab products targeting India, followed by Russia, Turkey and Mexico,” the report said.
The malware has also been detected with different modifications, such as the ability to text messages from a mobile device to premium-rate phone numbers, and to delete incoming text messages to hide alerts from mobile network operators about stolen money,” Kaspersky Lab Senior Malware Analyst Roman Unuchek said.