Geez, even after reading the article it seems I got it stuck in my head that it's an app when I posted. My mistake. But perhaps the idea still stands. Malware develoopers can code their app to look for traffic sent to ZAP and redirect it into oblivion, or I would assume there is some form of code installed on the phone itself that acts as the front-end forwarder to this back-end server, which cduld also be comprromised.
Btw if I'm confused yet again, I'll just re-read the dang article so I can my facts straight :)I read so many things in a day, sometimes with a pause between reading an article and posting about it, that I am prone to my own personal version of EMI I think.
Keep Up with TechRepublic