Patchwork Using Romance Scam Lures to Infect Android Devices with VajraSpy Malware

A notable cybersecurity firm from Slovakia, ESET, recently revealed a worrying situation involving Android users primarily in Pakistan and India. The cybersecurity firm discovered that a threat actor known as Patchwork has been exploiting the vulnerabilities in Android devices to propagate a remote access trojan named VajraSpy. Patchwork allegedly used romance scam lures to infect Android devices belonging to unsuspecting victims. Even more perplexing is the fact that ESET found 12 espionage apps, half of which were obtainable directly from Google’s official Play Store. Collectively, these six apps were downloaded more than 1,400 times, showing the vast reach of this breach and the vulnerability within Google’s app vetting processes.

Published: Mon, 05 Feb 2024 18:48:00 +0530