The rapid growth of mobile applications has created opportunities for threat actors to exploit users, as seen in the emergence of FireScam malware targeting Android devices, cybersecurity researchers at Cyfirma report. This malicious software, disguised as a “Telegram Premium” app, is distributed via a GitHub.io-hosted phishing site resembling RuStore, a trusted app store in Russia. Once installed, the malware gains extensive permissions to access, delete, and update apps, ensuring persistence on the device. FireScam steals sensitive user data such as login credentials, financial information, and personal messages, while actively monitoring app activities and screen interactions for further exploitation. Researchers emphasize the importance of using reliable antivirus software, keeping devices updated, and exercising caution online to mitigate such threats. Continue here.
