Security News > 2023 > August > GRU hackers attack Ukrainian military with new Android malware

Hackers working for the Main Directorate of the General Staff of the Armed Forces of the Russian Federation, more commonly known as the GRU, have been targeting Android devices in Ukraine with a new malicious framework named 'Infamous Chisel.
The malware was first highlighted in a warning from the Ukrainian Security Service earlier this month about efforts from the Sandworm hacking group to penetrate military command systems.
The NCSC describes Infamous Chisel as "a collection of components which enable persistent access to an infected Android device over the Tor network, and which periodically collates and exfiltrates victim information from compromised devices."
The malware targets Android devices and scans them to locate information and applications related to the Ukrainian military to send it to the attacker's servers.
New Android MMRat malware uses Protobuf protocol to steal your data.
New Android malware uses OCR to steal credentials from images.
News URL
Related news
- Ukrainian military targeted in new Signal spear-phishing attacks (source)
- Chinese FamousSparrow hackers deploy upgraded malware in attacks (source)
- Google fixes Android kernel zero-day exploited in attacks (source)
- North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS (source)
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- Spain arrests suspected hacker of US and Spanish military agencies (source)
- Hackers exploit SimpleHelp RMM flaws to deploy Sliver malware (source)
- Hacker pleads guilty to SIM swap attack on US SEC X account (source)
- Russian military hackers deploy malicious Windows activators in Ukraine (source)
- North Korean hackers spotted using ClickFix tactic to deliver malware (source)