Fraud

App Malware Reads Notifications Blood Pressure Tracker App

MCP MOBILE MALWARE UPDATE

As a leading mobile compliance and fraud specialist company, MCP Insight continually tests and validates potential issues coming from websites or malicious applications.

Our objective in this article is to reflect on a recent discovery of a malicious application called “Blood Pressure Tracker App”.

The malicious nature of the application enables it to open an offer on a website within the app, complete the offer and finally validate the paid for subscription. The unique element highlighted in this discovery relates to the malicious application’s ability to control the mobile phone by directly using the ‘notification receiver’, even before the notification message shows up in the notification area on mobile phone.

App Security

Android Malware is not a new phenomenon but the degree to which criminals manipulate applications is a constant evolving battle. Newer versions of Android security have increased the complexity for malicious applications to act on certain vulnerabilities within the android environment, as well as Google-Play-Protect. App platforms operate sophisticated security systems to combat Android Malware, but the cat and mouse game goes on, with an ongoing mission to eliminate malware from the ecosystem as new applications are published on the Play-Store and Non-Play-Store sites daily.

App Permissions

Newer Android security features request specific permissions or user consent on the device as a safety feature. One of the most common user consent requests for android applications is, “Notification Access” under Android System Settings.

The Notification Access can be manipulated by fraudsters by forcing the permission or consent requirement regarding legal, regulatory or for the application to function correctly. Users generally disregard this consent or are led to believe that this is important for the application to perform.

MCP Insight – App Test Process

To support our understanding of particular fraudulent applications, MCP search and install suspect apps from the Google Play-Store and Non-Play-Store sites on a daily basis for in-depth analysis.

MCP first detected this malicious Blood Pressure Tracker App in our anti-fraud platform MCP Shield. Our platform determined that fraudulent activity was originating from the app and started blocking attempted transactions to our clients’ services.

MCP identified that the Blood Pressure Tracker app was available on the Play-Store (before being taken down, based on our feedback to Google), so we downloaded it for observation.

Blood Pressure Tracker App – MCP Analysis

Upon installing the Blood Pressure Tracker app on the mobile phone, the application requires notification receiving and listening permission/consent from the user. This was ‘allowed’ and the phone we were using for the test was subscribed to 6 different services and a further 7 over the next 24hrs.

By analyzing the log information, we were able to establish that once notification access permission is granted, the application sets up a background service which continues to check for notification messages, ensuring that all notifications would be seen by the Blood Pressure Tracker app before the notification panel receives the notification (see snippet below).

The snippet below shows how the malicious application receives the notification.

The malware enables the application to extract data, read the pin code, suppress the notification message and use the PIN to complete the subscription element of a service.

Consumer Harm

To the unassuming User, the app looks innocuous and offers a perceived value – in this case the ability to track blood pressure for ‘free’. Often typical apps like this show 10,000 – 1,000,000+ downloads from the Play store. Our test shows the potential downside. Where malware is present, once downloaded and without the user’s knowledge, the application opens an offer on a website within the application, requests to subscribe to the offer and finally validates the subscription by reading the pin that was sent to the device. The consumer is defrauded.

Security Partners

Once the app malware analysis has been conducted, MCP work with security partners (in this case Google) to share documented fraudulent activity, sharing knowledge and in order for the partner to take down the malicious app from the app store.

MCP understands the brand damage such fraud does to the mobile payments Industry and we will work with partners to ensure that fraud and the malicious operators perpetrating fraud, are shut down.

On Google Play, the Blood Pressure Tracker App can no longer be downloaded.

The Blood Pressure app can still be downloaded from certain non-Google third-party app stores, which emphasizes the value of consumers using approved app stores where security management is more robust. MCP work helps mitigate the impact of malicious activity, whilst also showing the importance of anti-fraud solutions and the role they play protecting business and consumers alike.

MEF Connects Content & Payments: Africa 2025

June 6, 2025

Join MCP Insight at MEF Connects Content & Payments: Africa. Book a meeting with MCP Insight to explore risk management, and new opportunities across the mobile payments ecosystem.

World Telemedia Dubai 2025: Insights, Connections, and De-Risking Growth

May 30, 2025

Highlights from World Telemedia Dubai 2025, including insights from MCP’s spotlight session on de-risking growth in MENA. Watch the video and download the guide.

World Telemedia Dubai 2025

March 25, 2025

Meet MCP Insight during World Telemedia Dubai or elsewhere in the MENA region. Book a meeting to explore how we help Operators grow mobile payments revenue and manage risk.

App Malware Reads Notifications Blood Pressure Tracker App

MCP MOBILE MALWARE UPDATE

App Security

App Permissions

MCP Insight – App Test Process

Blood Pressure Tracker App – MCP Analysis

Consumer Harm

Security Partners

related posts

info@mcpinsight.com

App Malware Reads Notifications Blood Pressure Tracker App

MCP MOBILE MALWARE UPDATE

App Security

App Permissions

MCP Insight – App Test Process

Blood Pressure Tracker App – MCP Analysis

Consumer Harm

Security Partners

related posts

MEF Connects Content & Payments: Africa 2025

World Telemedia Dubai 2025: Insights, Connections, and De-Risking Growth

World Telemedia Dubai 2025

MCP Insight Joins ODDA to Launch MCP DATESCAN

How Consent Management Helps Network Operators Reduce Complaints and Refunds

MCP Insight Wins MEFFYS Award for MCP SCANNER 4.0

Future-Proofing for Payment Aggregators: Leveraging DDRC to Add Value for MNOs

Carrier Billing: How Payment Aggregators Must Adapt to Stay Relevant

The Customer Experience Revolution

Our Story: Creating a Sustainable Future for mVAS & Mobile Payments

Google RDAs: Why Industry Collaboration is Key to Sustainable mVAS Advertising

TELEMEDIA 8.1 LIVE & MWC 2025

We’re Hiring! Customer Success Manager

Introducing MCP SCANNER 4.0

Strengthen Your DDRC for the Ofcom Era!

Black Friday: Tackling Misleading Advertising

Navigating the Global Carrier Billing Landscape

Compliance – A Key Driver for Sustainable Carrier Billing

Connected World KSA 2024 – Book a Meeting

Key Insights from the Global Carrier Billing & Mobile Payments Summit 24

MCP Insight Partners with PayGate

World Telemedia 2024 – book a meeting with our team

Introducing MCP’s New Enhanced Compliance Reports

Introduction to DCB and PSMS Billing Flows

Global Carrier Billing & Mobile Payments Summit 24

Euros 24 Attract Unscrupulous Practices

INDUSTRY LEADERS TEAM UP TO IMPROVE GOOGLE AD EXPERIENCE

AI in the mVAS & DCB Space

MCP Insight Strengthens Leadership Team

Protecting Children in the mVAS Customer Journey

Google Responsive Display Ads: A Call for Collaboration

Insights and Celebrations at WASPA’s 20th Anniversary

Building a Secure and Trustworthy Mobile Payments Ecosystem

Telecoms World Middle East 2024

Cookie Consent Pop-ups on mVAS Advertising Flows

Inspiring Inclusion: Women in Tech

How Does a Malicious App Work?

TELEMEDIA 8.1 LIVE & MWC 2024

It’s the Most Wonderful Time of Year (for Fraudsters)

The Future Regulation of UK Phone-paid Services

Is Direct Carrier Billing in Germany Going Mainstream?

MTN Ad Buying Power Goes from 0 –78% in Just 3 Weeks

The Key to Reducing Complaints and Regulatory Fines in Carrier Billing

Why Are You Falling Foul of Google Ads Policies?

MCP Insight Launches MCP SCANNER 3.1

MEF CONNECTS: The Future of Fraud Prevention

AfricaCom: Africa Tech Festival 23

Market Intel: Nigeria

Protecting Barbie Fans: Our Fight Against Misleading Ads!

Global Carrier Billing & Mobile Payments Summit 23

Meet Ivan Rogani: Head of Business EU and LATAM

mVAS and DCB: How to Build Trust with Your Customers

Direct Carrier Billing (DCB) Compliance Guidance

Opportunities in the LATAM market for mobile value-added services (mVAS)

mVAS partnerships are revolutionising fan experiences

World Telemedia 2023 – book a meeting with our team

Ensuring trust and transparency: DDRC best practice

How to protect your customers and build trust in carrier billing

The rise of Direct Carrier Billing (DCB)

MTN South Africa sees positive change in marketing trends

Market insights: Oman

Mobile payments terminology: A to Z glossary

Unlocking the benefits of Direct Carrier Billing: a MNO’s guide

Malicious mobile apps: Spoofed and hidden APKs

How to identify malicious apps on Google Play Store

Meet the MCP team at 8.1 LIVE, Barcelona 2023

How to improve customer retention in the mobile services space

12 days of Christmas giveaways (and misleading ads)

Market insights: Greece

Mobile billing fraud: “I didn’t subscribe for this service”

Global Carrier Billing Summit 2022