Skip to main content
  1. Home
  2. Mobile

Rogue Android app will run up your bill

By

steamy windowAccording to security firm Symantec, an Android app that found itself in the hands of Chinese hackers is hijacking infected smartphones and charging clueless owners. The free app is called Steamy Window, which was modified with a backdoor Trojan added to its code. It was then rereleased to unapproved third-party app vendors, where it’s been picked up by Android owners and since then wreaking havoc on their texting bills.

The original Steamy Windows app, which is free in the legitimate Android marketplace, is nothing more than a phone functionality game. It appears to cover your screen in steam that you can “wipe off” with the touch of a finger. The malware-infected version, Symantec notes, will ask users for significantly more permissions during installation.

Recommended Videos

Symantec principle security response manager Vikram Thakur says this isn’t an unsophisticated operation either. “This one stands out,” he tells Computer World. “It’s pretty comprehensive in what it’s doing.” Thakur says the app is capable of installing various applications as well as hijacking a user’s browser and texting client. Sending the discreet texts is how the hackers are simultaneously profiting and running unsuspecting users’ bills up. According to Thakur, it continuously sends SMS texts and also prevents users from knowing they’ve run over their allotted text amount. Android.Pjapps (as it’s been labeled) can also block texts, so any queries from contacts you’re spamming could be deleted without you being any the wiser.

This very well could only be the beginning for mobile malware of this nature. The code is apparently easy to tack onto to other apps, and according to Thakur this type of app hack “seems to be ramping up” over the last several months. Of course, he points out that Android is particularly susceptible to this type of activity since phone owners can access and use apps from outside app stores.

Editors' Recommendations

Topics
Molly McHugh
Molly McHugh
Former Digital Trends Contributor
Before coming to Digital Trends, Molly worked as a freelance writer, occasional photographer, and general technical lackey…
How to use Google’s Gemini AI app on your Android phone
How to use Gemini on your Android.based device.

Google's collaboration AI tool, Bard, has changed its name and is now known as Gemini. The tool is also now available as an app on the Google Play Store, meaning it's easier than ever to chat with Google's AI assistant on your Android phone.

Read more
Google is launching a powerful new AI app for your Android phone
Google Gemini app on Android.

Remember Bard, Google’s answer to ChatGPT? Well, it is now officially called Gemini. Also, all those fancy AI features that previously went by the name Duet AI have been folded under the Gemini branding. In case you haven’t been following up all the AI development flood, the name is derived from the multi-modal large language model of the same name.

To go with the renaming efforts, Google has launched a standalone Gemini app on Android. Moreover, the Gemini experience is also being made available to iPhone users within the Google app on iOS. But wait, there’s more.

Read more
How to remove malware and viruses from an Android phone

Just like your computer, your Android phone can fall victim to viruses and malware. These infections can slow your system down and create glitches that make it difficult to use your phone. Whether you’ve downloaded an infected app or visited a corrupted website, you have to stop it fast to protect your phone.

Fortunately, there are steps you can take to scan your phone and remove malware and viruses from your Android phone:

Read more