Summary: A new campaign utilizing the PJobRAT Android malware has been detected, targeting users in Taiwan under the guise of chat applications. This malware, previously aimed at Indian military personnel, has evolved to harvest sensitive information while masquerading as messaging apps. Security researchers indicate its operation spanned nearly two years before pausing in October 2024.
Affected: Android users in Taiwan
Keypoints :
- PJobRAT can steal SMS messages, contacts, and media files, and has been active since at least 2019.
- The malware was distributed through malicious chat apps named SangaalLite and CChat, available on multiple WordPress sites.
- New features include running shell commands, allowing greater control over infected devices and enhanced data exfiltration methods.
Source: https://thehackernews.com/2025/03/pjobrat-malware-campaign-targeted.html