WyrmSpy and DragonEgg: Lookout Attributes Android Spyware to China’s APT41 | Threat Intelligence

Summary

Lookout attributes WyrmSpy and DragonEgg to infamous Chinese espionage group APT41, which has not slowed down since recent indictments by the U.S. government.
APT41 is known to target a wide range of public and private sector organizations, including nation-state governments, software development companies, computer hardware manufacturers, telecommunications providers, social media companies, and video game companies.
An established threat actor like APT41 turning their focus to mobile devices shows that mobile endpoints are high-value targets with coveted data.
WyrmSpy and DragonEgg use modules to hide their malicious intentions and avoid detection.
WyrmSpy and DragonEgg were first reported to Lookout Threat Intelligence Services subscribers in October 2020 and January 2021 respectively in full write-ups that included IOCs, YARA rules, and additional threat analysis.

Image

Image alternative text

Federation

Status:

Instances:

/m/[email protected]

Thread

ijeff

@[email protected]

Added: 11 months ago
Views: 1
Online: -
Ratio: 0

Magazine

android

@[email protected]

The new home of /r/Android on Lemmy and the Fediverse!

Android news, reviews, tips, and discussions about rooting, tutorials, and apps.

🔗Universal Link: !android

💡Content Philosophy:

Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it’s in violation of the rules.

Support, technical, or app related questions belong in: !askandroid

For fresh communities, lemmy apps, and instance updates: !lemdroid

💬Matrix Chat

💬Telegram channels / chats

📰Our communities below

Rules

Stay on topic: All posts should be related to the Android OS or ecosystem.
No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to !askandroid.
Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to !androidmemes.
No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.
No reposts or rehosted content: Share only the original source of an article, unless it’s not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.
No editorializing titles: You can add the author or website’s name if helpful, but keep article titles unchanged.
No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.
No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.
No offensive or low-effort content: Don’t post offensive or unhelpful content. Keep it civil and friendly!
No affiliate links: Posting affiliate links is not allowed.

Quick Links

Our Communities+ !askandroid+ !androidmemes+ !techkit+ !google+ !nothing+ !googlepixel+ !xiaomi+ !sony+ !samsung+ !galaxywatch+ !oneplus+ !motorola+ !meta+ !apple+ !microsoft+ !chatgpt+ !bing+ !reddit

Lemmy App List+ See thread

Chat and More+ Android Chat+ Lemdro.id Chat+ Mods Chat+ Lemdro.id Admin Chat+ Reddit

Created: 11 months ago
Owner: barista
Subscribers: 5
Online: -

Moderators

barista

Active people