Kaspersky Lab warns of a new version of the FinSpy malware that infects mobile devices running Android and iOS operating systems.
FinSpy is a multifunctional spy that can monitor almost all user activities on a smartphone or tablet. The malware is capable of collecting various types of user data: contacts, emails, SMS messages, calendar entries, GPS location, photos, saved files, voice call recordings, etc.
The new version of FinSpy can "read" regular and secret chats in secure messengers such as Telegram, WhatsApp, Signal and Threema. The FinSpy modification for iOS can hide jailbreak traces, while the Android version contains an exploit that can gain superuser rights and give the right to perform all operations on the device.
True, it should be noted that infection with a FinSpy spy is possible only if the attackers have physical access to the victim's device. But if the device has been jailbroken or is using an outdated version of Android, then criminals can infect it via SMS, email or push notification.
“FinSpy is often used for targeted espionage, because after it is fully deployed on a smartphone or tablet, the attacker gets almost unlimited opportunities to monitor the operation of the device,” Kaspersky Lab notes.
Source: 3dnews.ru