McAfee cybersecurity firm has found a new Android malware called “SpyAgent“, capable of stealing sensitive information from smartphones.
Unlike other types of malware, SpyAgent uses Optical Character Recognition (OCR) technology allows it to scan screenshots and images stored on a device to extract private data such as passwords, crypto wallet keys, and other sensitive text, and send this data to the attackers.
McAfee explained that SpyAgent spreads through links sent in text messages. When a user clicks on the link, it redirects them to a website and asks them to download an app. However, this app is actually the SpyAgent malware.
Once installed, it asks for permission to access important areas of the phone, such as contacts, messages, and stored files. This gives the hackers access to sensitive data on the device.
These fake apps often pretend to be useful services, like banking, government, or streaming apps.
So far, the malware has mainly been found in South Korea, where McAfee has detected over 280 harmful apps containing this malware.
The cybersecurity company urged Android users to be careful when downloading apps and avoid clicking on unknown links, especially those received via text messages.
This malware discovery is part of a growing trend in 2024, where similar threats have been identified on different platforms.
For instance, a malware called Cthulhu Stealer was recently found targeting Mac users, while a vulnerability in Google Chrome, linked to a North Korean hacker group, was reported by Microsoft.