watch out for this fake parcel delivery SMS, it spreads dangerous malware!

–

Cybereason security researchers warn ofa massive phishing campaign underway in Europe, North America and Asia. Users receive text messages masquerading as package delivery. When the victim clicks on the link, he comes across a site that tells him to install the APK of a delivery service. The FakeSpy malware is then installed on your smartphone.

Also read: Android malware – these 47 apps from the Play Store are urgently needed to uninstall

Never open an SMS from an unknown origin inviting you to collect a package

So in France, where the campaign is also very active, the page asks them to download theLa Poste application (obviously accompanied by malware). Described as “actively maintained” and “rapidly developing” FakeSpy is a particularly sophisticated personal data extraction tool. It can extract SMS, bank data, access to online accounts, read your contact list and more.

The then spreads to all your contacts. According to Cybereason, the attack was carried out by a group of hackers who speak the Chinese language, Roaming Mantis, and who is already behind similar attacks. Unlike other types of targeted attacks, FakeSpy seems to be designed using the “spray and prey” technique.

Concretely the goal is toinfect as many smartphones as possible to generate money. “The actors of this threat are trying their change, with a rather large net, until someone ends up biting”says Assan Dahan at ZDNet.com. It is relatively simple to avoid this threat. No delivery service will normally ask you to install an application by SMS.

The authenticity of the target page after clicking on the link should also draw attention: in general, if an official body asks you to download an application, they will redirect you to the Play Store. If you’ve fallen into the trap, researchers recommend removing the app and downloading a mobile antivirus to make sure the malware has been removed.