Spyware Campaign Targets Minority Groups with Over 100 Malicious Apps

Western intelligence agencies confirm advanced surveillance malware linked to a Chinese contractor is actively exploiting mobile devices worldwide.

Spyware apps BADBAZAAR and MOONSHINE are covertly embedded in over 100 Android apps, targeting Uighur, Tibetan, Taiwanese, and other dissident communities.
The malware grants attackers access to cameras, microphones, messages, photos, and location data, posing a significant privacy and security threat.
The spyware is distributed via trojanized apps mimicking legitimate software, including prayer apps and popular chat platforms like WhatsApp and Signal.
A Chengdu-based contractor, linked to China's Ministry of Public Security, is implicated in the deployment of these malware packages.
Global cybersecurity agencies, including the FBI, NSA, and the UK's NCSC, have issued joint advisories urging users to avoid third-party app stores and review app permissions regularly.