IDF’s new secured, ‘untrackable smartphone’ for it’s soldiers – Photo: IDF Spokesperson’s Unit

Google and Lookout announced the discovery of the spyware last week. The app, which was not available for download from Google Play, has already been detected on 36 devices, most of which were owned by people living in Israel.Other countries to have found infected devices are Georgia, Mexico, Turkey, Kenya and others.

NSO Group Technologies has previously been accused of developing Smartphone hacking software and selling them to spy agencies across the globe, as they allegedly did with Pegasus.

“To install Chrysaor, we believe an attacker coaxed specifically targeted individuals to download the malicious software onto their device,” said Google.

“Once Chrysaor is installed, a remote operator is able to surveil the victim’s activities on the device and within the vicinity, leveraging microphone, camera, data collection, and logging and tracking application activities on communication apps such as phone and SMS.”

Chrysaor also had a self-destruct feature, helping NSO Group’s malware avoid detection. “If it feels like it’s going to be found, it removes itself,” said Lookout mobile security researcher Michael Flossman. “That’s why it took so long to find these samples.”Lookout and Google said that though the samples date from 2014, there was evidence the spyware was working on some victim Android phones when discovered in the last few months.

The likelihood of being affected by such spyware may be small, however Google recommends users take precautionary measures such as installing apps only from reputable sources and keeping devices up-to-date with the latest security patches to protect themselves.

All known targets of Chrysaor have been alerted.

(Translated & edited by Lior Mor)