According to a Kaspersky Lab survey, almost one in five users (19%) use online dating applications in Russia. And, of course, attackers do not miss the opportunity to monetize this interest.
Company researchers discoveredthat in 2019, authors of mobile malvari often used the names of popular dating services. In total, experts found 1963 such malicious files for mobile devices. In 1262 of them the name Tinder was used, and in 263 – Badoo.
So, one of the applications, which at first glance looks like Tinder, is actually a banking trojan that constantly requires the user to provide extended rights to the Google Accessibility Service, a service designed to facilitate the use of applications by people with disabilities. After obtaining these rights, the malware independently issues all the permissions necessary to steal money.
Another application after installation is fixed in a system called Settings, at startup it displays a fake error message and hides from the list of applications in order to return after a while to display intrusive advertising.
In addition, scammers are developing phishing schemes that allow you to earn on the desire to find a partner for a date. As part of one of the common tactics, a user gets to know a girl, and when it comes to making an appointment, she offers to go to the cinema, chooses a movie theater and a session herself and sends a link to book tickets for. If a user pays for tickets, his money goes to scammers, and the person with whom he corresponded ceases to get in touch.
In addition to phishing schemes, new fake copies of dating services regularly appear. Mostly scammers use them to collect personal data.
“Dating sites are very popular, and attackers do not miss the opportunity to play on it. We remind you to be careful and recommend downloading only legitimate versions of such services from application stores and not sharing too much information about yourself with strangers, ”comments Vladimir Kuskov, head of the complex threats research department of Kaspersky Lab.