Android owners warned of spyware attack by hackers from Iran

Security researchers at Mandiant have warned users about the APT42 hacker group, whose members are suspected of having ties to Iranian criminal groups, and Android users should be especially cautious, as the spyware targets this particular operating system.

As it became known, APT42 hackers pose as journalists, communicating with potential victims on social media for several weeks. Then the hackers send phishing links to users, clicking on which the victims «untie the hands of the attackers» and, unknowingly, provide access to confidential data. At the time of writing, more than 30 cases of APT42 espionage have been reported.

The target group of hackers are employees of organizations in the fields of charity, education, healthcare, law, manufacturing, pharmaceuticals, and media. The hackers are focused on spying on users in the United States, Australia, some European countries, and the Middle East.

In early September, security experts warned Android owners about a hacker app that steals cryptocurrency. As it has become known, an updated version of the pseudo-application Mister Phone Cleaner, which allegedly removes unnecessary programs and garbage from a mobile phone, is available for download in the Android app store. The program, created by hackers from SharkBot, can steal cookies when logging into an account and bypass security checks.