![[article image]](https://cacm.acm.org/system/assets/0003/9550/033021_Getty_Images_phone-spy.large.jpeg?1617122850&1617122850 "Messaging apps vulnerable to the database theft include WhatsApp.")
Researchers have discovered a new advanced piece of Android malware that finds sensitive information stored on infected devices and sends it to attacker-controlled servers.
The app disguises itself as a system update that must be downloaded from a third-party store, researchers from security firm Zimperium said on Friday. In fact, it's a remote-access trojan that receives and executes commands from a command-and-control server. It provides a full-featured spying platform that performs a wide range of malicious activities.
From Ars Technica
View Full Article