- What is SpyAgent?
- How the malware works
- Precautionary measures
McAfee cybersecurity firm has found a new Android malware called SpyAgent, capable of stealing sensitive information from smartphones.
What is SpyAgent?
SpyAgent is a malware that uses Optical Character Recognition (OCR) technology to scan screenshots and images stored on a device to extract private data such as passwords, crypto wallet keys, and other sensitive text.
How the malware works
McAfee explained that SpyAgent spreads through links sent in text messages. When a user clicks on the link, it redirects them to a website and asks them to download an app. However, this app is actually the SpyAgent malware. Once installed, it asks for permission to access important areas of the phone, such as contacts, messages, and stored files. This gives the hackers access to sensitive data on the device. These fake apps often pretend to be useful services, like banking, government, or streaming apps.
Precautionary measures
So far, the malware has mainly been found in South Korea, where McAfee has detected over 280 harmful apps containing this malware. The cybersecurity company urged Android users to be careful when downloading apps and avoid clicking on unknown links, especially those received via text messages.
This malware discovery is part of a growing trend in 2024, where similar threats have been identified on different platforms. For instance, a malware called Cthulhu Stealer was recently found targeting Mac users, while a vulnerability in Google Chrome, linked to a North Korean hacker group, was reported by Microsoft.
