Japanese one-click fraud targeting iOS users appeared

ByJapanexperterna.se

Symantec, which is developing anti-virus software "Norton"OTAA malicious application distributed at the site is used for one-click fraud in Japanese targeted to iOS users "and calls attention to the damage caused by one-click fraud.

One-click fraud in Japanese, targeting iOS users with malicious app distributed with OTA | Symantec Connect Community
http://www.symantec.com/connect/blogs/ota-ios

In this one-click fraud, "When a user clicks the play button on the adult site, a pop-up requesting installation of the application is displayed, and a malicious application is installed on the terminal". At the end of May 2015Similar fraud using Android applicationAlthough it is just discovered, it is the first case that the iOS application was used for malicious one-click fraud. In addition, this application is considered to have abused the iOS Developer Enterprise Program, and affects the user who installed the application whether or not the iOS terminal is jailbreaked.

Applications that do one click fraud are downloaded by Over The Air (OTA) instead of App Store. The fraudulent adult site deftly deceives users and attempts to install malicious apps. For example, in the screenshot below, "seemingly normal" application name "playMovie" is displayed.


On iOS devices, when installing an application via a route other than the App Store, you will be asked to confirm whether you trust the software by displaying "untrusted App Developer". If you tap "Trust" here, the application will be installed as well as the regular application.


When installing the corresponding application on the device, the user is requested to pay 59,000 yen within the deadline and 300,000 yen after 3 days assuming that the user has agreed to register the membership of the site. Below is a screenshot of an adult site requesting membership fee payment.


As a way to deal with this application, Symantec says, "This app is only a part of fraud attempting to fool users and paying fees, the app itself is not harmful to the device, We do not collect payment information etc. If you install this application,Uninstall promptly, ignore payment requestPlease do it. "

Symantec also commented that "applications should be installed from trusted source only." As caution is urged not to trust apps with unknown sources, you need to be careful not to install or use malicious apps.