Cybersecurity Firm Warns of Fake 'Red Alert' App Spreading Malware via SMS Phishing

Cybersecurity firm CloudSEK has identified a malicious SMS spoofing campaign distributing a trojanised version of Israel's official 'Red Alert' emergency app amid the Israel-Iran conflict. The fake Android app, spread via phishing messages, mimics the legitimate app but requests high-risk permissions to access SMS, contacts, and location data. It uses advanced evasion techniques to bypass security, enabling spyware functions that intercept messages, harvest contacts, and track GPS data. Users are advised to download apps only from official stores.