SMS Spoofing Codes Found

Not too long ago, researchers from North Carolina State University published a video demonstrating how an app can simulate the reception of a text message from a spoofed source. Through SMS spoofing, it can be used for a number of malicious intentions, including SMS phishing attacks (SMSishing).

Symantec has recorded more than 250 applications that contain such codes.Symantec has recorded more than 250 applications that contain such codes.

Although the code has been publicly documented and used since August 2010, Symantec has yet to find any instances that use the code for a SMSishing attack. However, its findings reveal that a vast majority of apps use the code to deliver advertisements. Symantec has recorded more than 250 applications that contain the code that uses this technique including 200 apps that are currently available on Google Play.

So, what is a spoofed SMS message? The message is never sent or received, instead, the system service in charge of receiving text messages is tricked into thinking a message has arrived. It will store the text message and notify the user of the event. This phishing attacks can specify any arbitrary "from address" for it to attack and no special permissions are required to insert a spoofed message.

Users should be wary of the source of any suspicious incoming text messages while Google improves its Android platform to prevent spoofing of these text messages. According to Norton, "these apps may be identified by Norton Spot and any future malicious usage is detected by Norton Mobile Security."

Comments on Yahoo pages are subject to our link to Comments Guidelines. You are responsible for any content that you post. Yahoo is not responsible or liable in any way for comments posted by its users. Yahoo does not in any way endorse or support comments made by its users.

  • MH370 passenger’s partner tells of strange email from sacked Fox officer The Malaysian Insider
    MH370 passenger’s partner tells of strange email from sacked Fox officer

    The partner of an American passenger aboard the missing Malaysia Airlines flight MH370 has spoken about how a Fox executive who was recently sacked by the news station had contacted her offering to raise funds on her behalf. Sarah Bajc, whose partner Philip Wood is among the 239 people on board the missing plane, told the Sydney Morning Herald... …

  • Dr Ling’s son chose wine over woman, court hears The Malaysian Insider
    Dr Ling’s son chose wine over woman, court hears

    The son of former MCA president Tun Dr Ling Liong Sik today reached an out of court settlement with his ex-girlfriend in a breach of contract suit over seven properties registered under their joint names. Ling Hee Leong and businesswoman Teh Chee Yen agreed to settle out of court after he took the stand briefly and testified that he had chosen... …

  • MB: Only 29 days of water left in Selangor Malaysiakini

    Although heavy rain led to flash floods in parts of the Klang Valley yesterday, the Selangor government has said that taps will run completely dry in 29 days if rationing is not continued. "For now, we must continue with rationing as the level at the main dam, the Sungai Selangor dam, is below the critical level and can only last 29 days if rationing is not conducted," Menteri Besar Abdul Khalid Ibrahim said in a statement.   "We really hope the rakyat understands this situation and supports …