Cyber season security researchers warnA major phishing campaign is underway in Europe, North America and Asia. Users receive text messages that appear to be package deliveries. When the victim clicks on the link, they are taken to a site that instructs them to install an APK for a delivery service. The FakeSpy malware is then installed on their smartphone.
Never open an SMS from an unknown source inviting you to buy a package
For this reason In France, where the campaign is very activethe page asks them to downloadLa Poste app (accompanied by malware, of course). Described as “actively maintained” and “rapidly evolving,” FakeSpy is a particularly advanced personal data extraction tool. It can receive SMS, banking data, access online accounts, read your contact list and more.
HE It then spreads to all your contacts.According to Cybereason, the attack was the work of a group of Chinese-speaking Roaming Mantis hackers who have already been behind similar attacks. Unlike other types of targeted attacks, FakeSpy appears to have been designed using a “spray and hunt” technique.
The purpose, concretely, is,infect as many smartphones as possible to generate money. “Threat actors cast a wide net, waiting for someone to eventually bite.”Assan Dahan explains On ZDNet.com. Avoiding this threat is relatively simple. No delivery service will normally ask you to install an SMS app.
After clicking on the link, the authenticity of the destination page should also be noted: generally, if an official body asks you to download an app, it will direct you to the Play Store. If you fell for the trap, researchers recommend deleting the app and downloading a mobile antivirus to ensure the malware is removed.