The Hacker News
Researchers have discovered a new information-stealing trojan, which targets Android devices with an onslaught of data-exfiltration capabilities — from collecting browser searches to recording audio and phone calls.
While malware on Android has previously taken the guise of copycat apps, which go under names similar to legitimate pieces of software, this sophisticated new malicious app masquerades itself as a System Update application to take control of compromised devices.
The spyware creates a notification if the device’s screen is off when it receives a command using the Firebase messaging service, Zimperium researchers said in a Friday analysis. The ‘Searching for update..’ is not a legitimate notification from the operating system, but the spyware.