Malicious Version of RedAlert Rocket Alert App Used to Spy on Israel
As cyber threats continue to mount amidst the Israel-Gaza conflict, threat actors have been observed using a malicious version of the ‘RedAlert – Rocket Alerts’ app to spread spyware. The app is popularly used by Israelis and, with the latest attacks in South Israel, the number of users for the app has exploded as more and more people are seeking timely warnings about airstrikes in their area. Understanding the fake app campaign According to Cloudflare , the malicious version of the app is being distributed via a readalert[.]com website which was created on October 12. This development comes two days after a threat actor group named AnonGhost exploited a security issue in the ‘Red Alert: Israel’ app to intercept requests, expose servers and APIs, and send fake alerts to users, including nuclear bomb messages. The website provides the option to download the app for the iOS and Android platforms. While the iOS download redirects a user to the legitimate proj...