Yesterday we were contacted by our partner MegaFon, one of the major mobile carriers in Russia. They notified us about a suspicious application, which was found in both the Apple App Store and Google Play. At first glance, this seemed to be an SMS worm spread via sending short messages to all contacts stored in the phone book with the URL to itself.
However, our analysis of the iOS and Android versions of the same application showed that it’s not an SMS worm but a Trojan that uploads a user’s phonebook to remote server. The 'replication' part is done by the server - SMS spam messages with the URL to the application are being sent from the remote server to all the contacts in the user’s address book.
The application is called ‘Find and Call’ and can be found in both the iOS Apple App Store and Android’s Google Play. Full story
Related:
Report claims first discovery of malware in Apple App store - Inforum.com
Apple, Google remove Trojan spamming app from stores - CNET News
Apple Pulls ‘Find and Call’ App Following Security Alert - Macobserver.com
Researchers discover 'Find and Call' spam app on Android and iOS - The Verge
Apple and Google remove ‘Find and Call’ Trojan app - Digitaltrends.com
"Find and Call" app becomes first trojan to appear on iOS App Store - arstechnica.com
