Carding
Professional
- Messages
- 2,870
- Reaction score
- 2,511
- Points
- 113
Researchers at China's Anti-Mobile Threat Intelligence have published a report on Android malware and the latest Kongfuzi mobile attacks targeting Pakistan.
Kongfuzi, also known as APT59, has been active since 2013 and carries out attacks on government agencies, military personnel, and nuclear facilities in Pakistan and other South Asian countries.
According to Lookout, since 2021, the company has adopted malware for Android called SunBird and Hornbill based on commercial spyware BuzzOut and MobileSpy, respectively, which are used to steal data from devices, including instant messengers.
More recently, Antiy researchers managed to get hold of several malicious samples that, judging by the code structure and functions, are related to SunBird payloads.
The new campaign, which presumably began in May, mimics the Google update system, and malicious activity is aimed at stealing users ' photos, text messages, address books, records of various messaging software and chats.
Antiy has so far counted more than 50 government and military casualties, mostly from Kashmir and Jammu, as well as other parts of India.
Kongfuzi, also known as APT59, has been active since 2013 and carries out attacks on government agencies, military personnel, and nuclear facilities in Pakistan and other South Asian countries.
According to Lookout, since 2021, the company has adopted malware for Android called SunBird and Hornbill based on commercial spyware BuzzOut and MobileSpy, respectively, which are used to steal data from devices, including instant messengers.
More recently, Antiy researchers managed to get hold of several malicious samples that, judging by the code structure and functions, are related to SunBird payloads.
The new campaign, which presumably began in May, mimics the Google update system, and malicious activity is aimed at stealing users ' photos, text messages, address books, records of various messaging software and chats.
Antiy has so far counted more than 50 government and military casualties, mostly from Kashmir and Jammu, as well as other parts of India.
