Kaspersky: ‘PhantomLance’ campaign has been targeting Android users for five years. The campaign involves Trojan-laced apps in the Google Play store that are disguised as plugins, browser cleaners and application updaters. The developers behind these malicious apps created fake profiles on sites such as GitHub to lend a layer of legitimacy to the applications they were distributing. The ongoing PhantomLance campaign mainly targets Android users in Southern Asia, including India, Vietnam, Bangladesh and Indonesia. Researchers suspect that a group backed by a nation-state group behind the campaign is behind the development of these apps.”]
Source: https://www.cuinfosecurity.com/spyware-campaign-leverages-apps-in-google-play-store-a-14198