“Even if the mobile phone number is registered to an adult, downloading a child’s game may highly likely indicate that the child is the one who actually using the mobile phone. It is very doubtful that parents would want the above data about the phone to be transferred not only to unknown foreign servers, but to anyone else in general.”
Once installed, the apps prompted the victims for permission to make and manage phone calls, using the access to harvest their phone numbers along with other device information such as geolocation, mobile network parameters, and system metadata. “At first glance, a mobile phone number leak may seem like an insignificant problem. Yet in reality, it can seriously harm users, especially given the fact that children are the games’ main target audience,” Doctor Web researchers said.
While the malware-laced apps have since been purged from the app stores, users who have installed the apps on their devices will have to manually remove them to prevent further exploitation. Found this article interesting? Follow THN on Facebook, Twitter and LinkedIn to read more exclusive content we post.