A new version of the CloudZ remote access tool (RAT) is deploying a previously unseen malicious plugin called Pheno that hijacks the Microsoft Phone Link connection to steal sensitive codes from mobile devices. [...]
CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs
Summary + source link. No paywalls, no tracking.