The new bug is called Arsink, and it is an Android Remote Access Trojan (RAT). How the Arsink bug worksAndroid users are being tricked into downloading "pro" versions of official-looking apps, Zimperium said. Once these apps are downloaded, the Arsink bug gets to work within the device, allowing hackers access to:Text messagesEmailsCall logsContactsMicrophone recordingsPhotosLocation dataAnd more...Android users are being tricked into downloading "pro" versions of official-looking apps like Facebook, Instagram, and Tik Tok. Delete Any App Asking For Full Control 🚨Malware abuses Android accessibility permissions to hijack devices, steal data & spy on users. Around 50 well-known brands are being used, including:GoogleYouTubeWhatsAppInstagramFacebookTikTokIf you come across any "pro" versions of official-looking apps outside the Google Play Store, be sure to avoid them.

Source: The Times February 08, 2026 15:49 UTC