Malicious links for free internet

Cyber security threats have escalated dramatically over the period due to increasing number of mobile applications including viruses, ransom wares, social engineering attacks, etc. Security tools in smart phones are not as efficient in other systems such as personal computers. Thus, smart mobile phones are exposed more to cyber security threats in comparison with PCs. Thereby, it is necessary to increase the knowledge of people in this regard in order to decrease cyber security threats efficiently on their mobile phones.
According to the latest investigations that were carried out by FireEye, Iran is ranked as one of the most vulnerable countries against cyber security threats. FireEye is considered as one of the most authentic institutions in the field of cyber security. Based on the mentioned ranking, Iran is embedded in top 5 countries that are vulnerable against mobile malwares which indicates significance of security awareness in the field of mobile awareness for Iranians.
According to the latest investigations that were carried out by FireEye, Iran is ranked as one of the most vulnerable countries against cyber security threats. FireEye is considered as one of the most authentic institutions in the field of cyber security. Based on the mentioned ranking, Iran is embedded in top 5 countries that are vulnerable against mobile malwares which indicates significance of security awareness in the field of mobile awareness for Iranians.
In the recent days, numerous local malwares like ransom wares and viruses have produced that persuade mobile users to install mentioned applications. They use various social engineering techniques for persuading mobile users to click on malicious links, installing malicious applications with variety of topics like free Internet. After installing the regarded apps, mobiles are infected that endanger mobile users' information. There is lots of important information on mobile phones like financial information, personal information. After mobile is getting infected, confidentiality and integrity of mobile's data cannot be verified. For instance, in recent days, there is a message with the regarded topic "Until it is available, go install it and get 2GB of free internet access www.xu.qbia.info "Go to this channel www.sl.qbia.info, I tried, it gives you 2GB free Internet access as a gift" have been seen.
Thereby, user is persuaded to click on the link that is provided in the sent message. After clicking on the link, user is redirected to the Telegram group in which user is persuaded to install the application which offers free Internet. This application is analyzed completely by MCI-CERT. the mentioned application claimed that it is not compatible with the operating system in which it will be eliminated automatically from mobile phone. However, the regarded application continues its activities behind the scene without notifying user about its existence on the system.
During the installation of the mentioned application, this application asks high privileges from user which enables this application to access existing information on the cell phone including photo galleries, contact lists, call history so on and so forth. For example, unwanted short messages can be sent to contact lists without any notifications due to granted permissions in installation process. Then after, users are persuaded to click on the link that was sent from infected mobile phone.
It should have been noted that a temporary solution is implemented by MCI in which qbia.info domain and associated IP addresses are blocked. However, this is a temporary solution for the regarded malware. There are some steps which are recommended by MCI-CERT in order to thwart considered issues as follows:

1. All the victims must uninstall the application which is named icharge from their mobile phones by referring to settings and following this referring to Apps section. It must be noted that the application name is icharge when this document is published.

2. All the applications must be installed from authentic app stores. Do not install applications from social networks such as Telegram

3. Authentic and updated anti-viruses must be installed on the mobile phones

4. Do not click on suspicious links that are sent to your mobile phones with following topics Free Internet, Free Charge to name but a few. Because the attackers want to persuade you to click on the mentioned link to infect your mobile phones.

5. Always check the application's permissions during the process of installation.