A new type of malware, known as SMS Stealer, is making waves in the cybersecurity world. Designed to harvest one-time passwords (OTPs) and other sensitive information, this malware has already targeted over 600 global brands, according to experts from Zimperium.
Zimperium reports that SMS Stealer is spreading rapidly and affecting businesses in more than 113 countries, with a significant number of victims in Russia and India. The malware operates using 13 command-and-control (C&C) servers and enlists the help of over 2,600 Telegram bots to infect millions of users.
The malware’s function is straightforward: it gains read access to SMS messages and then sends the collected information to remote servers. This is particularly concerning as OTPs, which are commonly sent via text messages to authenticate online transactions, are used for securing banking and shopping activities against cyber-attacks and identity theft.
In October 2022, TrendMicro issued a warning about similar threats affecting Android users. Now, Zimperium has revealed that the new malware is being filtered by Google Play Protect tools, which may limit its ability to impact organizations.
Despite these protections, the sophistication of such attacks is increasing rapidly. Users must take proactive measures to safeguard themselves, including avoiding unsolicited emails and messages, not disclosing personal information to unknown callers, using security software, and keeping their devices updated with the latest patches.
Additionally, upgrading to newer devices can help mitigate risks associated with outdated hardware and software.