Summary: Cybersecurity researchers have identified updates to the LightSpy implant, a modular spyware with expanded capabilities for data extraction from social media platforms like Facebook and Instagram. This updated version supports an extensive range of commands across multiple operating systems and has introduced new Windows-specific plugins for data collection and surveillance. Concurrently, new Android malware has been discovered, which masquerades as a financial app to engage in predatory lending and extortion against Indian users.
Affected: {LightSpy implant, Android malware components, Indian retail banking customers}
Keypoints :
- LightSpy’s updated version features enhanced data collection capabilities, particularly aimed at social media accounts.
- New commands focus on operational control, affecting data collection methods from various platforms, including Android and iOS.
- Separate Android malware acting as a financial app has engaged in predatory lending practices, targeting primarily Indian users.
Source: https://thehackernews.com/2025/02/lightspy-expands-to-100-commands.html