Kotlin Language Programmed Malware makes Debut via Google Play App

The first malicious program created for Android phones for seizing information, executing ad frauds as well as registering end-users for top grade SMS services devoid of their consent, programmed with Kotlin a computer language was recently noticed inside Google Play Store.

The Kotlin programming language of the open-source kind enjoys full support of official status on Android devices that according to proud Google has features of safety so that applications by default work in a sound manner. It was during May 2017 that Kotlin was endorsed for Android following which it became widely used, with Netflix and Twitter being amongst the 17% of projects related to Android Studio utilizing the language.

Trend Micro in its blog post writes that the malware pretends to be a tool for cleaning as well as optimization of Android device, known as Swift Cleaner. Upon loading it carries out several sinister operations like dispatching SMSes from the end-user's device, running code from remote, filching data, executing conducting ad frauds via clicking, and forwarding URLs. Techrepublic.com posted this, January 10, 2018.

Moreover, the malicious application registers end-users for sophisticated and expensive SMS subscription facilities devoid of taking their consent, explains Trend Micro. Hitherto, the security company computed that there have been 1,000-5,000 instances of the application's downloading.

Upon launching of the application, the affected Android device's information gets dispatched onto one distant server, whilst the malicious program dispatches SMS to certain mobile number the server provides and which then starts forwarding URLs to execute ad frauds via mouse clicks.

Since certain Internet-based advertising churns income via the total count of clicks that advertisements receive, a few malware-laced applications, for e.g. Swift Cleaner would make the ad clicks automatic. Though this is pretty unwanted, still Swift Cleanser's SMS subscription factor is worse as victimized users would've to part with real money.

Trend Micro further stated it had notified Google about the application which carried the malware to which Google responded that its Play Protect safeguarded end-users against the particular malware family. Despite so, end-users require being cautious while downloading Android applications, particularly if those are from intermediate application stores alternatively from unknown developers.

» SPAMfighter News - 1/16/2018