updated 08:25 pm EST, Tue December 13, 2011
SMS code spotted in five new apps
Mobile security company Lookout has continued to expand its list of Android Market applications that have been found to contain malicious code known as 'RuFraud'. Researchers spotted 22 malicious apps by the start of the week, prompting Microsoft to offer victims free Windows Phone handsets, while five more have been discovered since then.
The titles include several horoscope apps, wallpaper utilities that offer pictures from movies such as Twilight and Moneyball, fake downloaders for popular Android games such as Angry birds, and fake free versions of other games.
Once downloaded, the apps trick users into agreeing to charges that will be applied to the bill due to SMS messages sent to premium numbers. The code appears to affect users in Europe and Asia, rather than North America.
Google has quickly pulled the offending titles from the app portal, however the situation has given credence to criticism of the mobile platform's security features. The company's open approach is said to make it easier for attackers to post malicious apps without encountering problems in the approval process. Fragmentation is also seen as a potential problem, as most Android handsets are running older OS versions that lack the latest security protection.