Premium SMS Subscription Scam on Android

How the Scam Works

• The Hook: Scammers offer fake prizes, unverified coupons, or malicious utility apps like QR scanners or flashlights.
• Phone Number Trap: The app or site asks you to enter your phone number and email address to access features or claim a reward.
• The Fine Print: By entering the number, you are unknowingly agreeing to "trivial terms" that consent to a premium-rate SMS subscription.
• Malware Automation: More sophisticated Android malware variants secretly operate in the background. They check your mobile operator, disable Wi-Fi to force cellular data, and silently click "confirm" on billing portals or intercept one-time passcodes (OTPs).

Immediate Action to Take

1. Check Your Phone Bill: Review your mobile statement for small, unrecognized international SMS or "Premium Service" charges, not just large spikes.
2. Contact Your Carrier: Call your mobile provider immediately to dispute the unauthorized charges, request a refund, and ask them to completely block Premium SMS services on your account.
3. Delete Malicious Apps: Go to your Android settings and uninstall any suspicious, generic, or poorly-reviewed apps that you do not remember downloading.
4. Notify Your Bank: If fraudulent charges were drawn directly from a linked debit or credit card, notify your bank to dispute the transactions and request a new card.

Proactive Protection

• Disable Premium SMS: Many carriers allow you to permanently block "Premium SMS" or "Third-Party Billing" directly from your account settings (e.g., via the T-Mobile Support portal).
• Install Security Software: Consider using a trusted mobile security or antivirus application to block known malicious sites.
• Avoid Unknown Sources: Only download applications directly from the official Google Play Store, and always check developer profiles and user reviews before installing.