Mobile phones in China installed with malware that secretly rake up user fees has spurred the Chinese government to crack down on the illegal activity.
China’s Ministry of Industry and Information Technology issued a notice on Wednesday that declared government agencies and the country’s telecom operators were implementing new measures to tackle the still serious problem.
The ministry is targeting what it called “money sucking” phones, which are installed with software that triggers fee-based mobile services without users’ knowledge.
The phones with the problem are brand name knock-offs built using the Android operating system, said Zhao Wei, CEO of Chinese security company Knownsec. Each month, the phones will spend only about 2 yuan (US$0.30) in text messages or other mobile services. The small amount ensures that users will not take notice, he said.
The makers of the phones are the ones responsible for installing the malware, and do so in order to generate more revenue, Zhao added. The phones make money by accessing mobile services operated or linked to the handset maker, he said.
“I think the software industry lacks a better business model, they can only make these knock-off and money-sucking software in order to survive,” he said. “This is fast becoming an industry in itself.”
The ministry has been already been fighting the problem and said it has contained it to some extent, according to the notice, which was written at the end of December.
The new measures include China’s telecom operators making efforts to boost supervision of their mobile services to check for irregularities. The ministry will also step up inspection for handset product quality, while also strictly regulating built-in software for the devices.
China has been seeing more malware used on mobile phones, say those working in China’s IT security field. In November, the Chinese media reported on a “zombie” virus that infected handsets and sent out random text messages at the expense of users’ accounts.
As smartphone use grows in the country, more of these devices are also being used to access the Internet, said Adrian Liu, a staff member with China’s National Computer Network Emergency Response Technical Team. “Traditional security threats that exist on the Internet are spreading to mobile handsets, so we must prepare for them in advance,” he said in an e-mail.