Discovery of Qwizzserial: A New Android SMS Stealer Family
A new Android SMS stealer family, named Qwizzserial, has been uncovered, primarily targeting users in Uzbekistan. The malware exploits the reliance on SMS for two-factor authentication in local payment systems, allowing fraudsters to intercept SMS messages and gain control over victims' finances. Distributed through Telegram, the Qwizzserial campaign mirrors the structure of Classiscam. The stealer has infected approximately 100,000 users, resulting in financial losses of at least US$62,000. The malware's effectiveness stems from the widespread use of SMS for various financial transactions in Uzbekistan, including P2P transfers, payments, and authorization confirmations, often serving as the sole security layer in the absence of 3D Secure or biometric authentication.
Pulse ID: 6867a8f5a0504d69fc23bc51
Pulse Link: https://otx.alienvault.com/pulse/6867a8f5a0504d69fc23bc51
Pulse Author: AlienVault
Created: 2025-07-04 10:12:05
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Android #Biometric #BiometricAuthentication #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #SMS #Telegram #bot #AlienVault