A Dangerous Spyware Hidden in Apps North Korean hacking groups secretly placed a new and dangerous spyware called KoSpy inside five apps on Android devices.These apps were available for download on Google Play and APKPure,

ScarCruft, also called APT27 and Reaper, is a North Korean state-sponsored cyber espionage group active since 2012. Attack chains orchestrated by the group primarily leverage RokRAT as a means to harvest sensitive data from Windows systems. RokRAT has since been adapted to target macOS and Android.

A group of hackers with links to the North Korean regime uploaded Android spyware onto the Google Play app store and were able to trick some people into downloading it, according to cybersecurity firm Lookout.

KoSpy masqueraded as utility apps, according to Lookout Mobile Security, which links the activity to a cyber-espionage campaign out of North Korea.

The KoSpy malware was found in fake utility apps such as ‘Phone Manager,’ ‘File Manager,’ ‘Smart Manager,’ ‘Kakao Security,’ and ‘Software Update Utility.’ These apps, while no longer on the Play Store,

A new Android spyware named 'KoSpy' is linked to North Korean threat actors who have infiltrated Google Play and third-party app store APKPure through at least five malicious apps.

Cybersecurity researchers at Lookout have discovered KoSpy, a sophisticated Android spyware linked to North Korea that has managed to infiltrate the Google Play Store. The malware is attributed to ScarCruft (APT37),

All of those collection methods could capture some incredibly delicate personal details, only for it to be sent to servers controlled by North Korean intelligence workers. Lookout