A Valentine’s Day mobile application, which promises to send an romantic MMS message to a loved one, actually hides a money-making scheme that sends expensive messages to a Russian premium rate SMS number.

Security experts have come across a downloadable file called love_mms.rar, which itself contains a Java Archive (.JAR) called jimm2010.jar.

It’s unlikely, of course, that anyone outside of the Russian-speaking world would be impacted by this malware, especially as it’s installation messages are impenetrable to most of us born in other countries:

Добро пожаловать! Вас приветствует мастер установки Jimm 2010! Нажмите "Да", чтобы продолжить инсталяцию.

Установка Jimm Сейчас будет произведена установка приложения Jimm 2010 на Ваш мобильный телефон. Нажмите "Да" чтобы продолжить инсталляцию.

Что такое Jimm 2010 Это красивые иконки и логотипы, прикольные смайлики (до 386 штук), смешные звуки, а также красивый внешний вид мобильной аськи!

Что нового в Jimm? Jimm Mobile от 10 января 2010 года, который включает в себя
многочисленные доработки и изменения мода ХаТТаВ.

Пользовательское Соглашение вступает в силу с момента выражения Вами согласия с его условиями путем продолжения установки программного обеспечения. Настоящее Соглашение формулирует юридические условия пользования Сайтом, предназначено для урегулирования взаимоотношений между Владельцем и Пользователем, и включает политику Сайта по поводу правил пользования услугами и контентом, размещаемым на Сайте, а также по поводу прав, обязанностей и ограничений, связанных с использованием услуг. Данное Соглашение распространяется на настоящих и будущих Пользователей Сайта. Это лишь краткое Пользовательское соглашение, его полную версию Вы можете увидеть на сайте [LINK] В процессе инсталляции Jimm Вы можете сделать пожертвование сайту 2 раза с помощью SMS на номер 5999. Стоимость каждого sms сообщения составляет до 95 рублей без НДС, в зависимости от Вашего оператора.

The last message warns that if you continue with the installation you have agreed you that if you continue then you have agreed to various terms-and-conditions, including that you will be stung twice to the tune of 95 rubles by sending an SMS to a short code number.

The Trojan horse, reported by The Register today, is detected by Sophos as Troj/Jifake-A.

Remember to take care over any applications you install on your computing devices – whether it be a desktop PC, laptop or mobile phone. Just because it’s Valentine’s Day doesn’t mean that there’s any excuse to throw all common sense out of the window.

• ZeuS Targets Mobile Users
  As early as 2006, Trend Micro already recognized the fact that the BlackBerry technology could be exploited by cybercriminals. The smartphone may have remained spared from malware attacks over the yea...
• SMS Ransomware Tricks Russian Users
  Online criminals are always seeking out tactics that would help monetize their activities.  Potential victims repeatedly fall for the traps that cybercriminals set up such as when they end up downloa...
• Croatian Facebook users targeted by a rogue Facebook app
  Compared to some other Eastern European countries, Croatia is not very well known for being a land of malware writers so I was very surprised when I found out that there is a malicious Facebook applic...
• Russian Trojan blamed for credit card losses at US diner
  Hundreds of lunchtime customers of a diner in the US city of Memphis are believed to have had funds stolen from their debit and credit cards after PCs at the venue became infected with malware. Vie...
• Facebook users targeted by ‘Dislike’ button scam
  Facebook users are being warned against a scam that offers the chance to install a 'dislike' button on their profiles. View full post on Network World on Security...
• Blog: The mobile game with a Trojan thrown in for free
  TSince 27 March a new game called 3D Antiterrorist has been cropping up on quite a few international freeware sites offering downloads for Windows Mobile smartphones. View full post on Securelist /...
• New Oficla trojan variant targets Facebook users
  MX Lab detected a new variant of the Oficla trojan that targets Facebook users and provides instructions on how to use the new password for their online Facebook account. The emails is send from the s...
• Fake AV for mobile platform
  We have seen countless number of rogue security products for Windows platform however this one is targeted to trick mobile users.The sample masquerades itself as a certain AV for mobile and ...
• “Download photoalbum” another variant of “i got u surprise”
  Previously we have written about the "i got u surprise" spam trojan on Facebook. And today, we still discovered another variant. This time, the message that is received by the victim is only "u?" and ...
• The SMSer Trojan returns as fake browser
  We have seen many fake security products and fake disk utilities targeting the windows platform. Of late, we have started observing an increasing trend in mobile platform too. Following on the heels o...