Kaspersky revealed that the first "malicious program classified as a "Trojan-SMS.AndroidOS.FakePlayer.a" has been detected for smartphones running on Google's Android mobile operating system. Trojan-SMS penetrates smartphones running Android in the guise of a harmless media player app. Users are prompted to install a file of over 13 KB with standard Android extension .APK. Once installed on the phone, Trojan uses the system to begin sending SMSs to premium rate numbers without the owner's knowledge or consent, resulting in money passing from a user's account to that of the cybercriminals."
"Kaspersky recommends that users pay close attention to services that an app requests access to when it's being installed. That includes access to premium rate services that charge to send SMSs and make calls. When a user agrees to these functions during the installation of an app, smartphone may then be able to make calls and send SMSs without further authorization."