How to avoid malicious apps on your phone
— -- Your phone goes everywhere with you. You keep it at your desk at work, near your bed when you sleep, and in your pocket during dinner. Many people use their phones for mobile banking, keeping in close touch with friends and family over Facebook and Twitter, and sending countless text messages about their daily lives. But do our phones deserve the trust we place in the security of all the information we're giving them?
If you choose your apps carefully and give out your personal information sparingly, you'll have no problem at all. But if you download everything and give out your name and address every time you can, you'll be making a huge mistake.
Smartphones and apps are just like anything in life — only give your personal information to the apps you trust. You wouldn't walk up to a stranger and tell him where you live, right? In the same light, you shouldn't just tell any old app where you live, either. Let's take a look at some of the more prevalent threats that could pose a risk to your iPhone or Android device and see what you can do to avoid them.
Threats to your phone
RuFraud
This Trojan virus that affects Android devices presents itself as a free version of a real app like Angry Birds. When it is run, it asks for permission to send text messages. Once granted, it begins sending premium rate text messages that cost $5 each, which get charged to your wireless account. You won't even know you're being charged until you review your bill.
Droid Dream Light
Here's a malicious virus that modifies Android apps, then distributes the modified versions to Google Play. This bit of code is pretty nasty; once it's on your device, it auto loads when you receive a call. It then sends sensitive data about your smartphone (like its model, International Mobile Equipment Identity, International Mobile Subscriber Identity, and software development kit) to a remote server, where it can be used for a wide variety of malevolent ends.
GGTracker
This is another Trojan that will kill your expense account. This code is installed after you click on an in-app advertisement. Once you've clicked, you're directed to a malicious website resembling Google Play's installation screen that persuades you to install and download an app. The app contains the malicious GGTracker code, which then subscribes you to premium SMS subscription services that may charge up to $9.99 per month.
FlexiSpy
Affecting Android, Apple, and Symbian devices, FlexiSpy is a scary piece of software. Not only does it provide live call interception, it also offers your smartphone spy access to SMS, emails, GPS location, and call records. It's being marketed as a tool to keep track of children with smartphones and to catch cheating lovers red-handed, but we all know how this can be used for nefarious activities as well.
How to keep yourself safe
While there are threats out there that can take advantage of your trusting nature with your phone, it's easy to make wise decisions that prevent these problems from ever happening.
Read the reviews
One of the best features in all the app stores is the wealth of user reviews of the apps. If an app has a problem or is a malicious app in disguise, then you can be pretty sure that some review of it will say so: "Warning! This app is no good!" or "This cost me $100 in text message charges!" When you see those kinds of reviews, avoid the app like the plague.