Symantec has warned that smartphone malware is increasingly being spread via Twitter, as crooks seek to maximise the exposure their dodgy software receives.
According to Symantec one mobile malware operation sent out over 1,500 tweets from 50 bogus accounts in just one hour.
The so-called Android.Opfake trojan, which covertly sends text messages to premium rate numbers when installed, has been particularly prominent on Twitter, said Joji Hamada, a security researcher at Symantec.
“These tweets typically contain short URLs and the message is mainly in Russian with some English terms included. Once the user visits the site, they are prompted to install the malicious application,” he wrote on the firm's Security Response blog.
Hamada said that Twitter was attractive to malware writers, as it provided a convenient way to advertise websites hosting their code, especially as many Twitter users access the service via their smartphone.
While Twitter users will inevitably be aware of bogus accounts, where tweeters with no followers pump out a stream of dodgy links, criminals are getting more sophisticated at disguising such accounts, warned Hamada.
Some of the accounts are starting to have credible user names and include profile information, designed to give the account the veneer of authenticity.
Popular hashtags include those related to software, mobile devices, pornography and even dieting topics, are also being included in messages, said Hamada.
It's not just mobile malware that smartphone users need be wary of, though, as last week a test of Android anti-virus tools showed that two-thirds were not good a detecting potential threats, while a handful of the products available did nothing at all to protect users.
Dr Kuan Hon criticises GDPR consent emails that will only eviscerate marketing databases and 'media misinformation'
Apple squashes Steam Link app on 'business conflicts' grounds
Philip Hammond wants to forget rules that the UK agreed with the EU to ban non-European companies from the satellites
Instapaper to 'go dark' in Europe until it can work out GDPR compliance