Massive SMS Stealer Campaign Targets Android Users Worldwide
A new report from ZLabs researchers at mobile security company Zimperium reveals a major SMS stealer campaign that is spreading across the globe, targeting Android users and stealing their sensitive information. This campaign is gaining access to users’ devices by tricking them with fake app download pages or through Telegram bots that promise free Android apps.
The hackers initiate contact with potential victims in two main ways. Firstly, they serve fake app advertisements on malicious webpages. Users who fall for these ads are taken to a page that looks like a legitimate Android app download link. However, the software they download is actually malware that asks for permission to read their SMS messages.
The second method employed by the SMS stealer campaign is through Telegram bots. Researchers discovered around 2,600 bots that entice victims with offers of pirated Android apps for free. In exchange for the app, victims are asked to provide their phone number. Unfortunately, the downloads they receive are actually malicious applications disguised as legitimate APKs.
Once the hackers gain access to a device, they can use the victim’s personal data for financial gain. One particularly concerning aspect of this malware campaign is its ability to access text messages. This gives the bad actors access to one-time passwords (OTPs) that are often used by banks and other financial institutions to verify a user’s access.
Zimperium researchers have been monitoring this SMS stealer campaign for over two and a half years, during which they have identified over 107,000 malware samples connected to the campaign. This shows that the hackers have been constantly updating their tactics to ensure their campaign remains effective.
The impact of this campaign has been widespread, with victims in 113 countries. The majority of victims are in India and Russia, but there are also significant numbers in Brazil, Mexico, the United States, Ukraine, and Spain.
Android users should be vigilant and cautious when encountering download links that promise free apps. It is crucial to verify the authenticity of the source before downloading anything. Additionally, users should regularly update their device’s security software to protect against new threats and malware.
