New Android spyware is targeting Russian military personnel on the front lines
1 min read
Summary
A new strain of Android malware targeting Russian military personnel has been discovered.
The malware is embedded in a modified version of the Alpine Quest mapping app, which is commonly used by athletes and Russian military personnel in Ukraine.
The malware steals contacts and location data, with threat actors particularly interested in files transferred via Telegram and WhatsApp, as well as the locLog file created by Alpine Quest.
The malicious app offers a free version of the paid app, which makes it more likely that individuals will download it, and its malicious functionality is difficult to detect as it operates like the original app.
The malware has a modular design, meaning that its capabilities could be expanded in the future.
