Gamaredon’s Mobile Mischief: Unleashing BoneSpy and PlainGnome on Androids!
Gamaredon, a Russia-linked threat actor, has debuted two new Android spyware tools, BoneSpy and PlainGnome. These mobile-only malware families target Russian-speaking victims in former Soviet states, collecting everything from texts to selfies. Apparently, Gamaredon’s New Year resolution was to become a digital hoarder of personal data.
Hot Take:
Well, it looks like Gamaredon has decided to flip the script and go mobile! Apparently, the once desktop-focused Russian hacking group is now “appsolutely” serious about keeping up with the times by unleashing two new Android spyware tools, BoneSpy and PlainGnome. Who knew espionage could fit in your pocket?
Key Points:
- Gamaredon, a Russia-linked threat actor, has introduced two new Android spyware tools: BoneSpy and PlainGnome.
- The malware targets Russian-speaking victims in former Soviet states like Uzbekistan and Kazakhstan.
- BoneSpy is a standalone app, while PlainGnome acts as a dropper for additional surveillance tools.
- The spyware gathers extensive personal data, from SMS messages and call logs to photos and location.
- Gamaredon employs dynamic DNS providers and shared IP addresses as part of its command-and-control strategy.
Already a member? Log in here