According to Forbes , ESET researchers said the Android malware dubbed XsploitSPY was hidden in three apps with interfaces of popular messaging platforms, including Dink Messenger, SIM Info, and Defcom.
XsploitSPY Malware Hidden in 3 Android Apps
ESET notes that although only a limited number of users in Asia have fallen victim to the malware so far, the discovery of the attack shows the seriousness that users need to be aware of. XsploitSPY can record a user's GPS, access microphone and camera recordings, SMS, even message notifications and clipboard recordings.
The limited nature of the campaign so far seems to suggest it is aimed at espionage, but the primary motive for malware like this is to steal credentials from banking and other financial applications.
“This active Android spying campaign began in late 2021 and primarily operates as messaging apps distributed through dedicated websites and Google Play,” the ESET team said. While the malicious apps have been removed from Google Play, the warning is important because they may still be on users’ devices or in third-party stores.
If you have one of the above dangerous apps, Android users should delete it immediately. Another action ESET recommends is to perform a security check on the device. Users should also change their bank account passwords. Using Google's Play Protect as an additional protection measure should also be considered.
Finally, users should pay attention to the battery life and processing speed of their smartphones. In case there are drastic changes to either, check what is running in the background.
Source link
Comment (0)