Researchers from Zimperium zLabs uncovered an ongoing campaign aimed at infecting the mobile phones of South Korean users with new sophisticated android spyware dubbed PhoneSpy.
The malware already hit more than a thousand South Korean victims.
Unlike other surveillance software that attempts to exploit vulnerabilities on the device, PhoneSpy disguised itself as a harmless application with purposes ranging from learning Yoga to watching TV and videos, or browsing photos.
PhoneSpy supports a broad range of capabilities inside, such as access the camera to take pictures, record video, and audio, get GPS location, view pictures from the device, access files and messages on the devices.
The malware also allows an attacker to remotely control the infected mobile devices.
The threat actors are distributing the malware through web traffic redirection or social engineering, experts did not find any evidence of the spyware in any app in the Play Store.
