FakeSpy

FakeSpy Description

FakeSpy is a newly spotted Android spyware. The FakeSpy threat appears to be propagated via bogus text messages, which are disguised as legitimate alerts by delivery companies. The fake text messages in question are used to carry the malicious APK file responsible for the installation of the FakeSpy malware. The FakeSpy threat is capable of obtaining various types of sensitive data from its targets. Furthermore, the FakeSpy malware is capable of spamming the contact list of the victim with fake texts, in order to propagate itself to other users. This is a clever distribution technique, as users are more likely to trust a text message when it comes from someone they know and trust.

The first time malware analysts spotted the FakeSpy threat was back in 2017. However, the cybercriminals behind the FakeSpy malware have no been idle over the years. They have introduced several updates to this dangerous Android spyware tool. It is clear that the FakeSpy malware is not an abandoned project. FakeSpy's recent update introduced a large list of new control servers that can be used to feed the implant with commands to execute, as well as to store information stolen from compromised systems. By doing so, even if one of the servers gets taken down by authorities or goes offline for other reasons, the malicious implant will have a fallback server to connect to.


TWIM Episode 14 Part 3: FakeSpy Android Malware danger

It is not yet known who are the individuals behind the FakeSpy malware. According to malware experts, it is likely that the group behind the FakeSpy Android spyware is a Chinese-based APT (Advanced Persistent Threat) referred to as Roaming Mantis. Most of the campaigns carried out by this hacking group are carried out against targets located in South Korea and Japan. However, the FakeSpy threat's activity has also affected users in other corners of the world.

If the FakeSpy malware compromises your Android device, it will likely allow its operators to get access to your text messages, private conversations, important data, etc. Make sure your device is protected by a reputable, modern anti-virus application compatible with Android.

Related Posts