Threat actors have been observed leveraging malicious dropper apps masquerading as legitimate applications to deliver an Android SMS stealer dubbed Wonderland in mobile attacks targeting users in Uzbekistan. "Previously, users received 'pure' Trojan APKs that acted as malware immediately upon installation," Group-IB said in an analysis published last week. "Now, adversaries increasingly deploy
![]()
source https://thehackernews.com/2025/12/android-malware-operations-merge.html
source https://thehackernews.com/2025/12/android-malware-operations-merge.html