The Tanzeem app update triggers a fake chat page that can dupe users into granting invasive permissions. The app seeks permissions to access contact, call log, location, account information, and conduct external storage file exfiltration activities, according to an analysis by Cyfirma.

New Triada comes preinstalled on Android devices
A new variant of the Triada Trojan has been discovered pre-installed on Android devices, enabling data theft from the moment the device is set up,