Whenever I install an app and it asks for access to my contact list, it always sets off alarm bells for me. If I cannot see a valid reason for access, I will definitely deny the request and often will just delete the app. My contacts are mine and the various companies I work for private information.
Research by Lookout Threat Lab has shown that predatory apps – both in the Apple App Store and the Google Play Store – are requesting access to contact lists and excessive permissions beyond the app functionality and then using this access in an inappropriate manner. These apps are not malware or spyware but legitimate apps, primarily finance and lending apps, but the companies operate predatory business practices.
We also found evidence that the data exfiltrated from devices are sometimes used to pressure for repayment, either by harassing the customers themselves or their contacts.
Predatory loan apps found in Google and Apple stores • The Register
Ruohan Xiong, Rono Dasgupta and Alina Mambo – Researchers at Lookout Threat Lab
Lookout Discovers Hundreds of Predatory Loan Apps on Google Play and Apple App Store | Lookout
Just be careful what you download and what you share and be prepared to NO and do with that app you really wanted.
Clive Catton MSc (Cyber Security) – by-line and other articles