Cybersecurity experts are warning about a dangerous new attack scheme: users are being sold or given smartphones that already contain hidden spyware. We are talking about the LunaSpy Trojan for Android, which is capable of completely controlling the victim’s device.
📱 A smartphone with a “surprise” inside
According to the F6 company, attackers pre-install malware on devices, and then give them to users under the guise of secure or “updated” smartphones.
Since the beginning of the year, about 300 targeted attacks have been recorded, mainly against clients of Russian banks. The scheme begins with social engineering: a person is convinced to replace the device, supposedly because of security or a good offer.
🕵️ What LunaSpy can do
The Trojan has extensive covert surveillance capabilities. It can:
— record the device’s screen
— gain access to the camera and microphone
— collect the user’s personal data
At the same time, the malware disguises itself as system applications, such as an antivirus, and actively resists removal by tracking the owner’s actions.
💬 Complete control over the victim
In some cases, attackers use additional communication channels directly on the infected device, coordinating actions and increasing pressure on the user in real time.
⚠️ What is important to know
Experts note: such attacks form a new level of threat, when a smartphone can be compromised even before the first turn on.
Experts recommend:
— buy devices only from official sellers
— avoid suspicious offers and “phone replacements”
— carefully check app permissions
A new scheme shows that even a “new” smartphone can now be under hackers’ control even before it reaches the owner.
