Nearly 7 million users infected with mobile payment virus

Nearly 7 million users infected with mobile payment virus

As the scale of mobile Internet users exceeded 527 million, mobile security has also become a growing concern for security vendors. Yesterday, Tencent Mobile Security Lab released "Mobile Security Report for the First Half of 2014", showing further spread of mobile payment virus. In the first half of this year, the number of users infected with mobile payment virus reached 6.934 million. Recently, the popular two-dimensional code has also become the most growth Fast exposure channels.

Mobile payment virus collusion phishing SMS stolen funds

According to the 34th Statistical Report on Internet Development in China by China Internet Network Research Center (CNNIC), the growth rate of mobile payment users in the first half of the year was as high as 63.4%. The utilization rate increased from 25.1% at the end of 2013 to 38.9%. The Tencent mobile security laboratory report shows that in the first half of 2014, Tencent phone steward intercepted payment of virus-like packets reached 86,235, the first half of infected cell phone payment virus users reached 6.934 million. The combination of mobile payment virus and phishing sms, has also become a trick used by fraudsters.

In the first half of 2014, Ms. Tang received a texting message from 10086 to remind her that her points can be redeemed and asked Ms. Tang to enter her bank account number, ID number, cell phone number and other information through the website of the SMS and download Install an app to your phone. Miss Tang completed the operation on request, received a number of shopping SMS verification code from an e-commerce site, but did not bother. Afterwards, Ms. Tang found bank account, stolen 2589 yuan.

In fact, this is the mobile payment virus and phishing messages colluded to steal user funds. Through the pseudo-base station disguised as 10086, swarm redemption of cash fraud phishing built-in phishing URL, the user receives the information login phishing website and fill in the user information, will be induced to install an APP with mobile phone virus. When the user installs a mobile payment virus, the virus will start in the background, and monitor the contents of the user sms, text messages with mobile payment verification code will be forwarded to the designated number, and then launch a quick payment through third-party payment to steal user bank card.

Two-dimensional code into the fastest growing channels of exposure

In the first half of the cell phone virus source channels, the electronic market and mobile forum still occupy the absolute dominance, respectively, accounting for 21% and 20% of the source of the proportion of software bundles to 18% of the proportion of the third. At present, many malicious software developers through the popular game or beauty video software embedded in the ads or malicious code, and then uploaded to the mobile forum for download to the user, most mobile phone users can not distinguish between the official version and the cottage version, it is easy Download and install lead to cell phone exposure.

It is noteworthy that in the first half of the use of two-dimensional code has been quite common, and drug and drug agencies and agencies also further use of the channel to spread malicious links and malicious Web site, users often will brush malicious code installed after the software or privacy charge Steal other viruses, this situation is becoming more serious. Two-dimensional code of the virus spread has reached 9%.

Tencent Security Labs reminds users to pay attention to the operation code after scanning code, beware of unplanned software (APP) download or fishing (personal sensitive information collection website) two-dimensional code; the user is best to install a two-dimensional Code malicious website blocking mobile security software to protect, or install a two-dimensional code with a secure identification of two-dimensional code scanning tools to reduce the risk of exposure due to two-dimensional code scanning exposure.

Fans trick World Cup gambling fishing fraud

In addition, during the World Cup, a large number of mobile phone applications related to the World Cup suffered cell phone virus attacks, and various World Cup gambling phishing scams for mobile phone users also appeared in large numbers.

It is reported that the World Cup gambling phishing scam message is accompanied by malicious links to "first into the 500 to 500", "save 1000 to send 2000" and other ways to entice users to participate in these counterfeit World Cup betting sites, users once you click on this type of fishing URL link, Will often jump to malicious gambling games mobile phishing site. Once the user registration to fill in personal information and bank information, the site will be the first time the information sent to the criminal accounts. These fishing gambling sites are actually highly simulated gambling games, and meet the current actual situation of the World Cup, so that fans break the concerns and continue to transfer recharge. Once the fans try to withdraw, there will be cash withdrawal problems, or by the customer service phone to guide users into the next round of fraud, such as cheating fans move to download Trojans hijack mobile banking to steal more funds.

In addition, a large number of mobile phone applications related to the World Cup suffered cell phone virus attacks, World Cup watching videos, watching news, World Cup games and other applications have become breeding grounds for the virus. Users should be vigilant, download and install mobile security software, regular virus killing and cell phone medical examination.

Morning News reporter Won good