The Serbian government exploited Qualcomm zero-days to unlock and infect Android devices with a new spyware named 'NoviSpy,' used to spy on activists, journalists, and protestors.
One of the Qualcomm flaws linked to the attacks is CVE-2024-43047, which was marked as an actively exploited zero-day vulnerability by Google Project Zero in October 2024 and received a fix on Android in November.
The spyware, which appears to have been deployed by Serbian authorities, based on its communications, was discovered by Amnesty International's Security Lab on a journalist's phone after police returned it.
https://www.bleepingcomputer.com/news/s ... -day-bugs/