Tech News Desk – The National Cyber Security Agency has issued an alert about a new Android malware named ‘Daam’. This malware is targeting Android mobiles and hacking sensitive data like call records, contacts, history and camera. Worryingly, the malware is also capable of bypassing anti-virus programs and deploying ransomware on targeted devices.
Broadcasting through third party apps and websites
The Indian Computer Emergency Response Team or CERT-In has alerted about the new mobile virus. CERT-In says that this malware is attacking smartphones through third party apps and websites and is circulating in other devices. Let us tell you that CERT-In is the central security agency to deal with cyber attacks and protect cyber space from phishing and hacking attacks and similar online attacks.
Data breach by bypassing security checks
CERT-In says that the DAM malware tries to bypass the device’s security checks after penetrating the device and steals sensitive data after a successful attempt. The virus accesses permissions such as reading history and bookmarks, background processing, and reading call logs.
How dangerous is Daam?
Capable of transmitting new malware, phone call recording, hacking contacts, accessing camera, changing device password, capturing screenshots, stealing SMS, downloading/uploading files, etc. and also hacking C2 (command-and-control) servers through advisory States that the malware uses the AES (Advanced Encryption Standard) encryption algorithm to encode files in the infected device. CERT-In said other files are removed from local storage by the malware and only encrypted files with “.enc” extension and a ransom note called “readme_now.txt” are left behind.
What is CERT-In Advisory?
CERT-In said in its advisory that users have been asked to be cautious and careful with websites with short URLs. According to the alert, ‘Bitly’ and ‘Tinural’ hyperlinks such as “http://bit.ly/” “\nbit.ly” and “tinyurl.com/”. Be careful with URLs like . Users are advised to thoroughly check the entire domain of the website they are visiting. Avoid clicking on any unknown link.