Google has confirmed the removal of five North Korean spy apps from its Play Store. This action was taken after the discovery of malicious software hidden within these applications.
Detection of Spy Apps on Google Play Store
According to reports from cybersecurity sources, the search engine giant identified and deleted these apps to protect users from potential spying threats. The incident highlights growing concerns about malware targeting mobile devices.
KoSpy Malware and Its Threats
These apps were found to conceal a dangerous malware called KoSpy, which is linked to a North Korean hacking group known as APT37 or ScarCruft. KoSpy is capable of stealing sensitive data from infected devices, posing significant risks to user privacy.
Information at Risk
KoSpy can access and collect various types of private information, including SMS messages, call logs, device location, and files stored locally. It can also capture screenshots or screen recordings, record keystrokes, gather Wi-Fi network details, and compile lists of installed applications.
Disguised Apps and Continued Risks
The North Korean malware was disguised as five different apps, including Phone Manager (휴대폰 관리자), File Manager, Smart Manager (스마트 관리자), Kakao Security (카카오 보안), and Software Update Utility. Even though these apps have been removed from the official Play Store, experts warn that they may still be available through other platforms.
Cybersecurity authorities advise users, “If any are on your phone, delete them now,” emphasizing the importance of vigilance in app downloads and permissions.
For more news and updates on North Korean spy apps, visit Filipinokami.com.