Researchers discovered an open-source spyware AhMyth associated with Google play store app called RB Music. The app borrowed malicious features and functionality from AhMyth to infect the Android users in wide. Users required to choose the desired languages, soon after the app will start requesting permissions. The app will. request the permission for accessing the device files which is the default request for every music app and if its declined then the. app will request permission to access the contact. Next, the app. will establish the. Command and Control server to transmit the stolen credentials, victims contacts lists and other details via unencrypted HTTP connection.”]