China's New Phone-Hacking Malware: Massistant
Security researchers have uncovered a new malware, Massistant, used by Chinese authorities to extract data from seized phones. Developed by Xiamen Meiya Pico, this Android software allows access to text messages (including from apps like Signal), images, location data, audio recordings, contacts, and more. While physical access is required, its widespread use poses significant risks to Chinese residents and visitors. Although Massistant leaves traces, allowing potential removal via tools like the Android Debug Bridge, the data is already compromised by the time of installation. Xiamen Meiya Pico, holding a reported 40% share of China's digital forensics market, was sanctioned by the U.S. in 2021. The company did not respond to requests for comment.