Chinese APT Uses Fake Messenger Apps to Spy on Android Users

Trojanized Apps Impersonate Signal and Telegram
Hackers aligned with Chinese interests are targeting Android users with fake chat apps Trojanized with espionage capabilities in separate and ongoing campaigns, one active since July 2020 and the other for more than 12 months. Eset attributed the campaigns to a threat group tracked as Gref.

android android users apps apt campaigns capabilities chat chinese chinese apt eset espionage fake july messenger signal spy targeting threat threat group