Home / News / Mobile Phone News / Beware this text message that could erase your Android phone

Beware this text message that could erase your Android phone


mazar android bot
Don't do it!

Android users are being warned to beware a text message that could wreak havoc with their Android phone.

The text message in question contains a link to an APK (Android Application Package) that, if installed, will give the people behind the malware administrator rights to the victim's device. This will let the attackers send SMS from your phone, have access to your internet browser, make calls, read your text messages (and hence read authentication codes sent as part of two-factor authentication mechanisms used by online banking sites) and erase everything on your device.

So not good.

The text message in question – via Heimdal Security Blog – looks like this (with some details redacted): "You have received a multimedia message from +[country code] [sender number] Follow the link http:www.mmsforyou [.] Net /mms.apk to view the message."

If you see this message, delete it immediately.

The malicious APK has been identified as the Mazar Android Bot. It was previously seen in another guise in November of last year.

It works by installing Tor on your phone, then unpacking and running it in order to connect to a server. It then sends a text message that reads simply "Thank you". But this SMS includes your device's location data.

Strangely, the APK won't run on Android phones using the Russian language option.

Read more: New Android malware almost impossible to remove

So what do the experts advise? You should never click links in SMS or MMS messages. Go to Settings > Security and make sure the Unknown Sources option is turned off – this will stop your phone installing apps from anywhere other than Google Play. You shouldn't use unknown and unsecured wi-fi hotspots, you should install a VPN on your phone, and install an antivirus.

Stay safe.


February 15, 2016, 8:50 pm

"Strangely, the APK won't run on Android phones using the Russian language option"

What's so strange about that? The hackers are likely to be Russian.

Eddie Smithers

February 16, 2016, 12:09 pm

Think it was meant 'tongue in cheek'.


February 16, 2016, 3:27 pm

The text message doesn't 'erase your phone' - downloading then installing an APK from a dodgy website via a dodgy text will. Loving the 1/1/1970 Apple bug though!


February 17, 2016, 11:22 am

Clearly you have no understanding of the value of sensationalism over truth. You would fail your first semester on a journalism degree. Now then, be on your way.


February 17, 2016, 11:28 am

I'm not clear that it has anything to do with mms. The reference to mms in the text message is a lure to get you to click the link in the text. That downloads an apk, etc. There is no mms afaik, so disabling that in your phone is no safeguard here.
You might be better of disabling links in text messages.


February 17, 2016, 1:25 pm


comments powered by Disqus