New Android spyware LianSpy relies on Yandex Cloud to avoid detection - #LianSpy
LianSpy, a sophisticated Android spyware targeting Russian users, has been discovered by Kaspersky researchers. Active since July 2021, it employs advanced evasion tactics like masquerading as legitimate apps, suppressing notifications, and using legitimate cloud services for command-and-control communications. The spyware captures screencasts, exfiltrates files, and harvests sensitive data while encrypting stolen information. It requests permissions upon installation, hides its icon, and can bypass Android's privacy indicators. LianSpy's use of public platforms and encryption complicates attribution, but its focus on Russian users suggests potential nation-state involvement in cyberespionage activities.