Android Droppers Now Deliver SMS Stealers and Spyware

First reported

01.09.2025 20:28

Last updated

📰 1 unique sources, 1 articles

Summary

Hide ▲

Android dropper apps, previously used to deliver banking trojans, are now distributing simpler malware such as SMS stealers and spyware. This shift is driven by Google's security measures, which have made it harder to distribute more complex malware. Droppers are designed to evade Google Play Protect and its Pilot Program, which block potentially suspicious apps. These droppers often masquerade as government or banking apps in India and other parts of Asia. The droppers avoid triggering security checks by initially requesting low-risk permissions and only fetching the actual payload after user interaction. This allows them to bypass initial scans and deliver the malicious payload once installed. Google has stated that it has not found any apps using these techniques distributed via the Play Store and that it is constantly enhancing its protections.

Timeline

01.09.2025 20:28 📰 1 articles

Android droppers now deliver SMS stealers and spyware
Android droppers, previously used to deliver banking trojans, are now distributing simpler malware such as SMS stealers and spyware. This shift is driven by Google's security measures, which have made it harder to distribute more complex malware. Droppers are designed to evade these measures by initially requesting low-risk permissions and only fetching the actual payload after user interaction. This allows them to bypass initial scans and deliver the malicious payload once installed. Google has stated that it has not found any apps using these techniques distributed via the Play Store and that it is constantly enhancing its protections.
Show sources

Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
Open in new tab

Information Snippets

Droppers are now delivering SMS stealers and spyware, not just banking trojans.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
Google's security measures, including Play Protect and its Pilot Program, have made it harder to distribute complex malware.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
Droppers are designed to evade these security measures by initially requesting low-risk permissions.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
Droppers often masquerade as government or banking apps in India and other parts of Asia.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
RewardDropMiner is one such dropper that delivers spyware and a Monero cryptocurrency miner.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
Google has not found any apps using these techniques distributed via the Play Store.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28
Bitdefender Labs has warned of a new campaign using malicious ads on Facebook to deploy the Brokewell banking trojan.
First reported: 01.09.2025 20:28

📰 1 source, 1 article
Show sources
- Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans — thehackernews.com — 01.09.2025 20:28

Summary

Timeline

Android droppers now deliver SMS stealers and spyware

Information Snippets