FireScam, an Android malware, masquerades as a premium version of the Telegram app to steal user data and remotely control their devices. Distributed through a phishing site impersonating popular Russian app store RuStore, the malware uses a multi-stage infection process and conducts extensive surveillance. It restricts app updates, keeping the infected software persistent within the device, and exfiltrates sensitive information. It’s unclear who operates the malware and how users are drawn to the malicious site.
North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to
