A cloudy campaign delivers commodity remote-access trojans to steal information and execute code.
https://threatpost.com/amazon-azure-clouds-rat-infostealing/177606/
PhoneSpy already has stolen data and tracked the activity of targets in South Korea, disguising itself as legitimate lifestyle apps.
https://threatpost.com/new-android-spyware-poses-pegasus-like-threat/176155/