"FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps"

Researchers have discovered a new "smishing" campaign carried out by the Roaming Mantis threat group.  The adversaries are targeting Android mobile devices and are spreading FakeSpy infostealer malware.  The malware is disguised as legitimate global postal-service apps.  The researchers found that the postal apps used to disguise FakeSpy are country-specific, including USPS, Chungwha Post, the British Royal Mail, the German Deutsche Post, France's La Poste, Japan Post, and Swiss Post. When the malware is activated, it steals the victim's SMS messages, financial data, and more.  

Threatpost reports: "FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps"