Reviewers claim that their messages are now flooded with one-time passcodes for accounts they never created. Hence, the app will have already used the Android users’ phone numbers to generate fake accounts on various online platforms. Notably, users will often remove the app as soon as it’s finished because it will freeze and never arrive at the promised SMS interface. Since this procedure takes a while, the remote operators are able to send several 2FA ( two-factor authentication) SMS texts to users who are signing up for different services, reading their content, and then sending it back to the operators. The researcher explains that it requests the user’s phone number on the first screen and then overlays a fake loading screen that purports to display the status of loading resources. Steal Phone Numbers to Verify & Create New Web Accounts Security researcher Maxime Ingrao reported it to Google, but the Android team has not responded as of now.Īs soon as the software is installed on the device, it asks permission to send and receive SMS, which seems reasonable given that Symoo advertises itself as a “simple to use” SMS app. The app is still accessible on Google Play as of this writing. Symoo app and user reviews on Google Play
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |