North Korea's ScarCruft Deploys KoSpy Malware

North Korea's ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility Apps
ScarCruft, also called APT27 and Reaper, is a North Korean state-sponsored cyber espionage group active since 2012. Attack chains orchestrated by the group primarily leverage RokRAT as a means to harvest sensitive data from Windows systems. RokRAT has since been adapted to target macOS and Android.
Google deletes five North Korean spy apps from Play Store
Google confirmed detecting and deleting five North Korean spy apps from its Play Store. The news comes from Forbes, which reported that search engine company has removed the “identified apps” from its download platform.
Suspected North Korean Hackers Infiltrate Google Play With 'KoSpy' Spyware
KoSpy masqueraded as utility apps, according to Lookout Mobile Security, which links the activity to a cyber-espionage campaign out of North Korea.
North Korean government hackers snuck spyware on Android app store
A group of hackers with links to the North Korean regime uploaded Android spyware onto the Google Play app store and were able to trick some people into downloading it, according to cybersecurity firm Lookout.
North Korean Hackers Distributed Android Spyware via Google Play
The North Korea-linked APT37 has been observed targeting Android users with spyware distributed via Google Play.
New North Korean Android spyware slips onto Google Play
A new Android spyware named 'KoSpy' is linked to North Korean threat actors who have infiltrated Google Play and third-party app store APKPure through at least five malicious apps.
Google removes several ‘dangerous’ apps from Play Store, here’s why you should also delete them
The KoSpy malware was found in fake utility apps such as ‘Phone Manager,’ ‘File Manager,’ ‘Smart Manager,’ ‘Kakao Security,’ and ‘Software Update Utility.’ These apps, while no longer on the Play Store,
Android apps laced with North Korean spyware found in Google Play
Researchers have discovered multiple Android apps, some that were available in Google Play after passing the company’s security vetting, that surreptitiously uploaded sensitive user information to spies working for the North Korean government.
Regtechtimes on MSN3d
Dangerous Malware: KoSpy Spyware Targets Android Users Worldwide
A Dangerous Spyware Hidden in Apps North Korean hacking groups secretly placed a new and dangerous spyware called KoSpy ...
El Adelantado de Segovia7h
If you have an Android device, you may be at risk – this malicious application steals all the information from your device
Hackers are getting craftier, finding new ways to disguise malware as seemingly innocent apps. Some of these infected apps ...
NewsBytes2d
Attention! Delete these apps from your Android smartphone now
To protect their devices, users are advised to immediately delete any of the identified malicious apps if installed. They ...
Google deletes disguised ‘North Korean spy apps’ that steal texts, location and screenshots – see if you’ve got them now
GOOGLE has pulled down apps that experts warn were hiding North Korean “surveillance tool” that steals your texts, location, ...
ET Now on MSN2d
Google’s flawed security measures fail to protect users from KoSpy spyware? Another blunder?
Google’s claim to be a protector of Android users’ security is falling short once again. After recently removing several ...