Cybersecurity firm Lookout reported that North Korean hackers uploaded spyware called KoSpy to the Google Play store, potentially tricking users into downloading it. This espionage tool can gather various types of sensitive data, including SMS messages, call logs, device location, and more. Although only downloaded a few times, the operation hints at a targeted surveillance initiative rather than broader attacks. Lookout suspects that these activities relate to the North Korean regime's strategic goals, possibly supporting illicit operations like their nuclear program.
'Lookout details an espionage campaign involving several different samples of an Android spyware it calls KoSpy, which the company attributes with 'high confidence' to the North Korean government.'
'KoSpy collects an extensive amount of sensitive information, including SMS text messages, call logs, the device's location data, files and folders on the device, user-entered keystrokes, Wi-Fi network details, and more.'
Collection
[
|
...
]