Security News > 2020 > May > WolfRAT Android Malware Targets WhatsApp, Facebook Messenger
UPDATE. A new Android malware family has been discovered, which targets popular messaging apps like WhatsApp and Facebook Messenger to gather intelligence on Android victims.
Researchers assess with "High confidence" that the malware is operated by Wolf Research, a Germany-based spyware organization that develops and sells espionage-based malware to governments.
Upon further research of WolfRAT itself, researchers found the RAT is based on a previously leaked malware named DenDroid.
During their analysis of the earlier samples, researchers noticed that the feature was never called or used by the malware - however, in later samples the screen recording is started when the RAT determines that WhatsApp is running.
Researchers believe its operators are continuing to work under the guise of a new organization, called LokD. This new organization proposed the creation of a more secure Android phone, said researchers.
News URL
https://threatpost.com/wolfrat-android-malware-whatsapp-facebook-messenger/155809/
Related news
- New FireScam Android malware poses as RuStore app to steal data (source)
- New FireScam Android data-theft malware poses as Telegram Premium app (source)
- FireScam Android Malware Poses as Telegram Premium to Steal Data and Control Devices (source)
- DoNot Team Linked to New Tanzeem Android Malware Targeting Intelligence Collection (source)
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- SpyLend Android malware downloaded 100,000 times from Google Play (source)