August 14, 2022

What you need to know

  • Google’s security researchers have said that some internet service providers have helped attackers spread a spyware campaign.
  • The “Hermit” spyware has targeted Android and iOS users in Italy and Kazakhstan through malicious downloads.
  • Google insists the spyware was never uploaded to the Play Store.

A few weeks ago, end-point security vendor Lookout published its findings (opens in new tab) about a spyware campaign allegedly used by governments to steal sensitive data from users in Kazakhstan and Italy. Google has now backed up that report and issued a warning to Android users about the “Hermit” spyware.

According to Google’s Threat Analysis Group (opens in new tab) (TAG), governments collaborated with internet service providers (ISPs) in various countries to spread the spyware. The malware is thought to be capable of infecting both Android and iOS devices.