Kaspersky recently reported on Tria Stealer, a newly discovered Android malware designed to collect and exfiltrate SMS data. By intercepting text messages, this malware can access authentication codes, personal communications and financial information, making it a serious threat to user privacy and security. Attackers often leverage SMS data for account takeover, fraud and further malware distribution.
The original report identified 16 malware samples as part of their IOCs. From those, 2 are not available in the industry while 14 of them are detected by Zimperium’s Mobile Threat Defense (MTD) with high accuracy in a zero-day fashion, demonstrating the effectiveness of our on-device machine learning capabilities.
Furthermore, Zimperium proactively identified and blocked Tria Stealer in real-world attacks. From the reported IOCs, 8 samples were detected in customer devices, being the first detection in April 30th 2024, 9 months before it was reported by Kaspersky. In total, this attack was prevented in 55 devices across our customer base before any sensitive data could be compromised.
Zimperium remains committed to staying ahead of evolving mobile threats, ensuring that users and organizations are protected against sophisticated malware campaigns. For more details on Tria Stealer, read the full Kaspersky report here.
