Researchers have found malicious Android apps, named KoSpy, that stealthily upload users' sensitive information to North Korean intelligence. These apps, which masquerade as file management and security utilities, harvest data such as SMS, call logs, and location, targeting both English and Korean speakers. Available on major app marketplaces like Google Play and Apkpure, their legitimate facade raises concerns about app marketplace safety. A privacy policy associated with one app inadequately downplays the risks of data transmission and storage, revealing a troubling security gap.
The apps in question imitate common utility functions but stealthily collect and transmit sensitive user data to servers linked with North Korean intelligence.
Attackers are increasingly targeting legitimate platforms for attacking users, highlighting the vulnerability of app marketplaces, even after passing security vetting.
Collection
[
|
...
]