Over ten million users have been duped in installing a fake Samsung app named “Updates for Samsung” that promises firmware updates, but, in reality, redirects users to an ad-filled website and charges for firmware downloads.

The app takes advantage of the difficulty in getting firmware and operating system updates for Samsung phones, hence the high number of users who have installed it.

The app, which has no affiliation to Samsung, only loads the updato[.]com domain in a WebView (Android browser) component.

The problem here is that the app breaks Play Store rules and uses its own payment system, rather than using the one provided by the official store, opening users to having their payment data intercepted or logged by a third-party, rather than being handled by Google’s secure and better-protected payment channel.

Read full article here