Scam with File-Based Application Mode Android (.apk) via Wedding Invitation Letter


Beware of fraud mode using Android Package Kit (.apk) files for electronic wedding invitations. The .apk file is sent via the WhatsApp messaging application. If the recipient of the message accesses the .apk file then the criminal will gain access to the victim's SMS including the SMS-banking token.

The workings of this cybercrime mode are as follows. If clicked, the application will ask for access to read SMS or MMS activities. If allowed, the SMS stored on the cellphone or SIM card will be read by bad actors.


The next requested access is to carry out activities Receive SMS will also be requested. If allowed, bad actors can monitor and/or delete messages without the knowledge of the victim.

The next requested access is to perform the Send SMS activity. If allowed, bad actors can send paid SMS without the need to confirm to the victim first.

When all of these requests are granted, the application is installed on the victim's android device, bad actors have the possibility to access SMS-Banking information history such as pin codes from SMS history which are usually not deleted by the victim. Armed with this information, bad actors can send money from the victim's account.


The recommended mitigation guide to minimize the security risk of fraud mode using the electronic wedding invitation .apk file is not simply opening a link or executable file. The .apk file sending mode is the most common medium used by bad actors to trap victims. Also use only downloading and installing apps from official app sources (Play Store or iOS App Store). Be careful in granting access permissions to installed applications.

To increase security, update the operating system, applications/software, firmware, and web browsers regularly to increase device security from existing vulnerabilities. Also update passwords regularly. Use the latest antivirus and security tools and scan both storage and memory regularly.

The application can request access to perform the following activities:

  • Read SMS or MMS. If allowed, the application reads SMS messages stored on the cellphone or SIM card. This application makes it possible to read the victim's secret messages.
  • Receive SMS. If allowed, the application receives and processes SMS messages. This application makes it possible to monitor or delete messages without showing them to the victim.
  • Send SMS. If allowed, the application is capable of sending SMS messages. This application allows to be charged when sending messages without confirmation to the victim.
  • When the application is installed on the victim's android device, fraudsters have the possibility to access SMS data that includes SMS-Banking information such as pin codes from SMS history.
  • Most victims have the possibility of not deleting the transaction history from SMS-banking which can result in attackers obtaining confidential information and can request SMS tokens illegally. If this can be done, the attacker can initiate a transfer of money from the victim's account.

Some of the disadvantages experienced by victims of fraud with this Android-based file (.apk) sending mode are:

  • The bank account balance is completely drained by fraudsters
  • The WhatsApp account was stolen so we lost access to log back in
  • For Postpaid Telkomsel users, bills can swell due to multiple package activations to other numbers using the Telkomsel Halo limit.
  • Misuse of data obtained by fraudsters.
For those of you who have received the information above, always be on the lookout for new style scams, and here are some tips so we can avoid fraud and avoid the losses it causes:

  • Download and install apps only from official app stores like Play Store or iOS App Store.
  • Regularly update operating systems, applications/software, firmware, and web browsers to improve device security from existing vulnerabilities.
  • Be careful every time you open the link you get.
  • Always update passwords regularly.
  • Don't just install the application, be careful in giving permission for the application that is installed.
  • Use the latest (updated) antivirus and security devices and perform antivirus scans both on storage and memory regularly.

Post a Comment

0 Comments

advertise

Slider Parnert

Subscribe Text

Offered for construction industries