Earlier this year, security firm Sophos discovered a malicious link that had been spread on Facebook — which would force an Android app to automatically download onto visiting smartphones.
The app, detected as Andr/Opfake-C, tricked users into believing they would have access to online games — but actually subscribed to a premium rate SMS service at a cost of £10.
Moscow-based firm (translated as Connect Ltd) is said to have made up to £250,000 from the scheme.
UK regulatory authority PhonepayPlus has fined the firm £50,000, ordered it to repay all victims and banned them from introducing other premium rate services without permission for the next two years."
Link to Original Source