Microsoft's 365 Defender Team claims that malware is becoming more popular and can be used to subscribe to premium services without you knowing. However, this attack is complex and requires a lot of steps.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

The malware-infected apps are often classified as "toll frauds" because they use dynamic code loading to execute the attack.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

For example, the malware will subscribe you to a premium service through your monthly telecom bill. The malware then forces you to pay.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

The malware works only by exploiting WAP (wireless app protocol), which is used by cellular networks.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

Some malware can disable Wi-Fi, while others wait for you outside Wi-Fi coverage. Again, the dynamic code loading is what comes into play here.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

This malicious software will then subscribe to the service behind the scenes, read an OTP (one-time-password) you might have received before you subscribe, fill out the OTP field, and hide the notification to cover its tracks.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

The good news is that malware is not restricted to Google Play.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing

This is because Google prohibits dynamic code loading by apps. So side-loading Android apps is a bad idea.

Be Aware: Android Malware Subscribes You To Premium Services Without You Knowing