Zimperium, the pioneer in mobile security, announced new research from its zLabs threat research team revealing a large-scale Android surveillance campaign dubbed Arsink RAT, a cloud-native Remote Access Trojan (RAT) designed to harvest sensitive data and give attackers intrusive control over infected devices while blending into legitimate cloud traffic.
The investigation, titled “The Rise of Arsink RAT,” identified 1,216 unique malicious Android app samples, tied to 317 distinct command-and-control (C2) endpoints, and telemetry associated with approximately 45,000 infected devices across 143 countries, making Arsink one of the most expansive Android surveillance operations observed in recent months.
