New Android Malware Lets Hackers Turn Google Play Apps Into Spyware

The security research team at iVerify Threat Intelligence have discovered a new Remote Access Trojan (RAT) that has been dubbed Cellik, and which is targeting Android users. It includes features typically seen on advanced spyware and delivers functionality that allows threat actors to spread their wares in a more stealthy fashion.

Once a user has been compromised by Cellik, attackers have the ability to both view and control the device in real time with little to no lag. This includes being able to see any incoming notifications, which can be used to steal multi-factor authentication codes or read private messages. Additionally, attackers gain complete access to any data stored on the device, including any linked cloud storage directories.

Beyond providing threat actors with unlimited access to a victim's data, Cellik also provides an avenue for phishing and other kinds of web based attacks. It’s able to launch and ...