HomeNewsAndroid Malware Can Steal Private Keys From Screenshots and Images
News

Android Malware Can Steal Private Keys From Screenshots and Images

Suraj Manohar
By Suraj Manohar

-

36
0
Claim upto $1000 From Bitrue.com

A phishing scheme is targeting Android users in South Korea and the UK to steal their crypto credentials.

A McAfee report revealed the prevalence of a malware targeting Android users to steal their crypto credentials, including the mnemonic phrases representing private keys from screenshots and images.

The malware—called SpyAgent—uses optical character recognition (OCR) to scan the media saved in Android users to gather sensitive data that can allow the developers to part crypto users from their funds. OCR is a commonly utilized technology found across devices that enables said devices to read text from media files. Beyond images, SpyAgent can also collect information from text messages and chats.

McAfee’s investigation broke down how the bad actors behind SpyAgent are getting phones infected with the malware by turning to phishing campaigns launched across social media platforms and sending phishing links via text messages. These posts and messages often advertise trustworthy applications, like “banking and government services to TV streaming and utilities.” The websites on the other side of the malicious links look identical to the real ones, easily tricking individuals who follow the links to download the applications. However, the applications on these websites, downloadable as APKs (Android Package Kits), install SpyAgent. The malware then takes over phones to scan for text messages, images, device information, and contacts.

SpyAgent Targeting Android Users in South Korea and the UK

McAfee has identified 280 fake applications used to distribute the malware, with the nefarious phishing campaign primarily targeting South Koreans. However, the investigation also found the bad actors behind the malware operating campaigns in the UK. “This development is significant as it shows that the threat actors are expanding their focus both demographically and geographically,” the report read. “The move into the UK points to a deliberate attempt by the attackers to broaden their operations, likely aiming at new user groups with localized versions of the malware.”

Two other malware schemes were unraveled in August, one targeting Mac devices and the other going after Windows devices.

FOLLOW US

Suraj Manohar
Suraj Manohar

Upcoming Events

View Calendar

Most Popular

LiveBitcoinNews is a leading online platform dedicated to providing the latest news and insights about Bitcoin and the broader cryptocurrency market. It offers timely updates on market trends, regulatory developments, technological advancements, and expert analyses, catering to both seasoned investors and newcomers in the digital currency space. The site features a variety of content, including articles, guides, interviews, and opinion pieces, making it a comprehensive resource for anyone interested in staying informed about the rapidly evolving world of cryptocurrencies.

Contact us: [email protected]

© Copyright - Livebitcoinnews.com