Research on Android malware called KorBanker has uncovered a treasure trove of text messages that include authentication codes for Google and Facebook and VPN passwords. The malware is hidden in another app, such as a fake Google Play app, and offered for free on an online store. The data collected by the app included VPN passwords for Google, Korea Mobile, Facebook, Seoul Credit Rating & Information Co. and SK Telecom. The research proves valuable information can be collected from text messages, which should act as a warning to businesses.”]
Source: https://www.csoonline.com/article/2603022/android-malware-stash-of-text-messages-found.html