Kaspersky Lab has detected a surge in cybercrime activity that has attacked hundreds of thousands of Google Play store users who want to lose weight.
Since the beginning of 2022, more than 23,000 such attacks have been registered in the Laboratory. According to experts, cybercriminals have long deceived users with the help of fake applications for data recovery and installation of additional functions, however, the healthy lifestyle theme is used in this scheme for the first time.
Fake fitness apps based on GriftHorse.l have appeared in the Russian segment of Google Play since the beginning of the year. They automatically deduct money from users’ cards.
The scheme works like this: the user is offered an application with an online course of home workouts or a diet plan for symbolic money (about 29 rubles). During installation, you need to enter card details in the application itself or on a special website. The user agrees without delving into the details written in small print or off the screen. And subsequently he is very surprised when he sees monthly write-offs from several hundred to several thousand rubles.