You are here: Home » Companies » News
Business Standard

How to protect your phone against Xafecopy malware that's stealing money from you

Around 40 per cent of target of the malware has been detected in India

Khalid Anzar  |  New Delhi 


2017  has witnessed numerous ransomware and attacks. The new Trojan, which from mobile phone users, has been recently detected by a Russia-based internet security firm Kaspersky.  What's alarming is that the penetration rate reveals  40 per cent of the malware's targets has been in India.

The is categorised as a because it gets side loaded along with other useful and then loads malicious code onto the device.

Here is how the works:

The major entry point for any or ransomware is the installation of unverified from unknown sources. While the default setting of most restricts installing any app from an unknown source, the setting can easily be changed by the user.

Once the unverified app affected with or any other is installed and activated in the mobile phone, they spread in the root files of the smartphone and operate discreetly.

The clicks on web pages with Wireless Application Protocol (WAP) billing - a form of mobile payment that required no credit/debit card information or CAPTCHA for security. The cost of purchases made through WAP billing is charged directly through the user’s bill.

How to identify if your device is affected

Because the works through WAP billing it requires a mobile data connection to operate and, therefore, the automatically disables the wireless connection. If you notice that your smartphone turns off the wireless connection randomly, there is a need to get your phone checked.
Also check your monthly bill for details. If you see any service activated other than what you know of, get in touch with telecom operator and seek information on it. Get the service cancelled and identify the app that raised the request to activate that service.

Run a background check of all the using Google Play protect to understand if all the are safe. If the phone fails to respond while scanning the app or if the list of shows fewer than what you have installed, look at the that do not feature in the Google Play app list and uninstall them at the earliest.

How to protect devices against such threats
  • Prohibit the installation of from unknown sources. This type of can be distributed through advertisements, and with this prohibition in place, you simply will not be allowed to install them.
  • Install a reliable mobile security anti-virus and internet security app that keeps a check on activity.
  • Most of the telecom operators provide the option to disable WAP billing from the backend. Get the service suspended by getting in touch with a telecom operator.

First Published: Mon, September 11 2017. 14:56 IST