Mobile Surveillance Tool EagleMsgSpy Used by Chinese Law Enforcement

December 12, 2024 at 08:42AM Chinese law enforcement has utilized a surveillance tool called EagleMsgSpy since at least 2017 to collect data from Android devices via physical access. Developed by Wuhan Chinasoft Token Information Technology Co., it gathers sensitive information such as SMS, call logs, and GPS data, linked to public security bureaus in China. … Read more

New EagleMsgSpy Android spyware used by Chinese police, researchers say

December 11, 2024 at 04:06PM A new Android spyware, EagleMsgSpy, developed by Wuhan Chinasoft Token, facilitates surveillance by Chinese law enforcement. Operational since 2017, it targets various data types, including messages and location. Evidence ties it to public security bureaus, suggesting systematic government use. An iOS version is suspected but unverified. ### Meeting Takeaways: EagleMsgSpy … Read more

New Android Spyware LianSpy Evades Detection Using Yandex Cloud

August 6, 2024 at 06:06AM The LianSpy, an Android post-compromise spyware, has targeted users in Russia since 2021. Discovered in March 2024, it uses Yandex Cloud for command-and-control communications, enabling it to capture screencasts, exfiltrate user data, and evade detection. Its stealth tactics include bypassing privacy indicators and leveraging legitimate services for communication and storage. … Read more

Android spyware ‘Mandrake’ hidden in apps on Google Play since 2022

July 29, 2024 at 06:29PM A new variant of the Android spyware ‘Mandrake’ was discovered in five Google Play apps downloaded 32,000 times. Kaspersky found the updated version with enhanced obfuscation and evasion, entering through these apps. The spyware operates stealthily, prompting users to install further malicious APKs. Android users are urged to be cautious … Read more

Hamas Hackers Sling Stealthy Spyware Across Egypt, Palestine

June 17, 2024 at 02:08AM Hamas-linked APT group Arid Viper uses Android spyware AridSpy distributed through Trojanized messaging apps. The malware targets Android users in Egypt and Palestine, collecting various data and enabling audio and visual surveillance. Ongoing AridSpy espionage campaigns are active, posing a continued threat. The group is continuously updating and maintaining the … Read more

Stealthy Kamran Spyware Targeting Urdu-speaking Users in Gilgit-Baltistan

November 10, 2023 at 12:45AM A watering hole attack has targeted Urdu-speaking readers in the Gilgit-Baltistan region via the Hunza News website. The attack delivers a new spyware called Kamran, which is disguised as an Android app. The malware collects sensitive information from infected devices and uploads it to a command-and-control server. Kamran lacks remote … Read more

Arid Viper Targeting Arabic Android Users with Spyware Disguised as Dating App

October 31, 2023 at 11:17AM A cyber espionage group known as Arid Viper has been identified as responsible for an Android spyware campaign targeting Arabic-speaking users. The campaign uses a counterfeit dating app to gather data from infected devices. The malware has features that allow for the collection of sensitive information and the deployment of … Read more