BleepingComputer and Virus Bulletin describe Operation NoVoice as Android malware distributed via Google Play that profiles devices, downloads exploits, and can seize control. The scale cited is millions of infected devices, raising concerns about store vetting and persistence.
'NoVoice' Android malware on Google Play infected 2.3 million devices
McAfee reports Operation NoVoice, an Android rootkit campaign that hides inside legitimate-looking utility & game apps previously hosted on Google Play. Behind the scenes, the app profiles the handset, downloads exploits, & can seize control of the device.
McAfee’s analysis shows Operation NoVoice stealthily installs via Google Play, persists across resets, and weaponizes a modular rootkit to exfiltrate data (notably WhatsApp) through multi-stage exploits and a resilient C2 network.
This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.
← Back to Cyber Security