Close on the heels of Russia-based security vendor Kaspersky Lab's detection of the "Find and Call" Trojan app on the Apple App Store, the app has now been removed from the App Store as well as from Google Play, where it was also available.

The "Find and Call" Trojan app largely pilfered the private details of the users, and spammed their address book contacts with invitations for downloading the same app.

The app was essentially uploading the users' contact lists to a remote server, with the harvested numbers then being sent out SMS spam messages that featured a link which prompted the download of the infected app.

Though it was originally believed that an SMS worm had spread through text messages, instead of having spread through the app store, the Kaspersky Lab's Securelist recently revealed that the app was a Trojan.

Revealing that the Trojan uploaded a user's phonebook to remote server "to be used for SMS spam campaigns," Securelist's Denis explained that the server carried out the `replication' bit, with the result that "SMS spam messages with the URL to the application are being sent from the remote server to all the contacts in the user's address book."

Despite the fact that Securelist report has pointed out that the "Find and Call" app malware is relatively benign, the discovery of the malware is a disturbing milestone in itself for Apple, as it underscores the first instance of malware available via the App Store!