A new form of malware has found its way onto Google Play disguised as a secure backup service called SaveMe.




According to a blog post from Lookout's Jeremy Linden, it's actually a variant of another piece of Android malware called SocialPath. SocialPath is also a fake security malware.

SaveMe takes a two prong attack: First, it prompts users for their full name, email, phone number, and a photo. Meanwhile, the app is also secretly swiping victims' contact list, SMS messages, and device information such as the MAC address, wireless carrier, and more.

Second, it nabs the victims' call log, which shows the numbers called, the date and time of the call, the contact information associated with the call, and more information. It can then make phone calls for unknown reasons.

Though it's since been removed from Google Play, many likely fell for the scam. When observing one spam campaign designed to spread the malware to new victims, Lookout said they tracked some 5,961 clicks on the campaign's malicious links.