The app is a game called Blend Color Puzzle. In it, people are asked to recognise and tap on shades of colour. Blend Color Puzzle has been available in the official Google Play Store since 3 November 2015 and has been downloaded more than 50,000 times so far. The visual similarity to the popular game Blendoku might be the reason that so many users have tried out the free game. Even the app images displayed by the publisher in the Play Store show the name Blendoku on the left border of the play area. After launching the game, users receive two SMS messages from the mobile service provider confirming that two subscriptions have been set up. This happens in the background, without the user noticing.
New form of attack via apps
The approach of setting up subscriptions without any user interaction is a new method of attack. Previous WAP billing cases originating from apps resulted from the user having clicked on a web banner, for example. This is not necessary in the current case. Time will tell whether further cases of this scam come to light in the coming months.
G DATA tips for protection
- Users should contact their mobile service provider and ask for third party provider services to be blocked. This will stop silent payments from being made to third parties.
- A comprehensive security solution on the mobile device is also a must. G DATA Internet Security for Android offers effective protection for smart devices.
- Reviews and comments can be a help with apps. Potential users should look more closely if there are any negative comments.
Further information can be found in the G DATA SecurityLabs blog article.