Google spots spyware campaigns targeting Android, iOS, and Chrome

Google researchers detected two spyware campaigns that were using various zero-day exploits alongside n-day exploits to target Android, iOS, and Chrome. The link would then redirect them to legitimate websites such as the page to track shipments, or a popular Malaysian website to avoid detection The campaign was also found to be sharing the GPS location of devices while allowing attackers to install application archive files on iOS devices, Google’s Threat Analysis Group said in a blog post. In Android, the campaign was found to target phones with ARM GPU running Chrome and were using Intent Redirection to deliver three exploit loads. The second campaign, discovered by Amnesty International, contained a complete exploit chain consisting of multiple zero-day vulnerabilities targeting the latest versions of Samsung’s internet browser.