The KoSpy spyware is reportedly attributed to North Korean threat groups APT-37 (ScarCruft) and APT-43 (Kimsuky), and is capable of harvesting SMS messages, call logs, ...

The advisory reveals that KoSpy has been linked to North Korean cyber groups APT-37 (ScarCruft) and APT-43 (Kimsuky). Once installed, KoSpy can access a wide range of sensitive user data.

AI-driven malware and state-sponsored attacks create an ever-evolving threat landscape. Google’s rapid response to threats like KoSpy shows adaptability, but no system can guarantee complete ...

The latest threat comes from harmful spyware, like KoSpy and the step is a bid to keep this malware out of its ecosystem.. Google also recommends that all users ensure Google’s Play Protect is ...

The North Korea-linked threat actor known as ScarCruft is said to have been behind a never-before-seen Android surveillance tool named KoSpy targeting Korean and English-speaking users. Lookout, which ...

Even though KoSpy managed to sneak past Google’s defenses and land on the Play Store, it didn’t stick around for long. Google moved fast, removing the malicious app as soon as security researchers ...

Recently, the cybersecurity organization Lookout said the apps conceal the new KoSpy malware. Also, the malware has links “to the North Korean group APT37, a.k.a. ScarCruft.” ...

KoSpy has numerous data collection capabilities, including the ability to collect and transmit SMS messages, harvest Wi-Fi network details, access location info, and record keystrokes. The apps have ...

The KoSpy malware was found in fake utility apps such as ‘Phone Manager,’ ‘File Manager,’ ‘Smart Manager,’ ‘Kakao Security,’ and ‘Software Update Utility.’ These apps, while no longer on the Play ...