Friday, March 29, 2024
Home » Daam Virus Strikes Android Phones: CERT-in Raises Alarm Over Call Log Theft, History Breach, and Camera Access

Daam Virus Strikes Android Phones: CERT-in Raises Alarm Over Call Log Theft, History Breach, and Camera Access

by Prashant Kumar
4 minutes read

The national cyber security agency has issued a recent advisory stating the emergence of a malicious Android malware named ‘Daam’ Virus. This malware has the ability to infect mobile phones and gain unauthorized access to sensitive information such as call records, contacts, browsing history, and even the device’s camera.

According to the Indian Computer Emergency Response Team (CERT-In), the malware is particularly concerning as it can bypass conventional anti-virus programs, making it difficult to detect and remove. Additionally, Daam is also capable of deploying ransomware on targeted devices, further exacerbating the potential harm caused.

As the federal technology entity responsible for combating cyber attacks and safeguarding cyberspace against various online threats including phishing and hacking, CERT-In aims to raise awareness about the presence of this Android malware and the associated risks.

According to the agency, the distribution of the Android botnet occurs through third-party websites or applications that are downloaded from untrusted or unknown sources. These sources are not considered reliable or verified, making them potential avenues for the spread of malware.

According to the advisory, once the ‘Daam’ malware is installed on a device, it employs various techniques to evade the device’s security checks. Upon successfully bypassing these checks, the malware proceeds to extract sensitive data and acquire permissions such as reading browsing history, bookmarks, and call logs, and killing background processes.

The ‘Daam’ malware is particularly sophisticated as it possesses multiple capabilities. It can hack into phone call recordings, access contacts, gain unauthorized access to the device’s camera, modify device passwords, capture screenshots, steal SMS messages, and download/upload files. The stolen information and data are then transmitted to a command-and-control (C2) server from the victim’s device.

The advisory further states that the ‘Daam’ virus utilizes the AES (advanced encryption standard) encryption algorithm to encode files present on the victim’s device. Subsequently, other files are deleted from the local storage, leaving only the encrypted files with the “.enc” extension. Additionally, a ransom note named “readme_now.txt” is left behind by the malware.

To prevent falling victim to such viruses and malware, the advisory provides a set of do’s and don’ts. It advises against browsing untrusted websites and clicking on untrusted links. Caution should be exercised when clicking on links received via unsolicited emails or SMS messages. Installing and regularly updating anti-virus and anti-spyware software is recommended.

The advisory also highlights the importance of being cautious regarding suspicious phone numbers that do not appear to be legitimate mobile phone numbers. Scammers often mask their identity by using email-to-text services to conceal their actual phone numbers. Genuine SMS messages from banks usually contain a sender ID with the bank’s short name rather than a phone number.

Furthermore, users are advised to be cautious when encountering shortened URLs (e.g., “http://bit.ly/” “nbit.ly” and “tinyurl.com/”). To verify the actual destination of a shortened URL, users can hover their cursors over the link to view the full website domain they would be visiting. Alternatively, using a URL checker tool that allows users to input a short URL and obtain the full URL is recommended.

By following these guidelines, users can enhance their security posture and reduce the risk of falling victim to malware attacks like ‘Daam’ and other similar threats.

You may also like

Leave a Reply...

About Us

Updates Junction is an exclusive online news and media website that delivers and offers fresh and reliable news and trending stories on topics that interests our users most. 

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?
%d bloggers like this:

Adblocker Detected

Please support us by disabling your AdBlocker extension from your browsers for our website.