Bad news continues to come for Android users
The nightmare of malicious software for Android users seems endless. The latest malware uncovered has caused millions of people to panic.
India's premier cybersecurity agency, CERT-IN, has recently issued an alert regarding a potent Android malware, named "Daam." This hazardous malware not only bypasses antivirus defenses but can also pilfer confidential information and execute ransomware on the devices it targets.
The Daam malware, once it infiltrates a device, possesses the ability to access and procure an array of personal information. This includes browsing records, call logs, contact details, contents of the camera, SMS texts, and files. It adeptly dodges security measures, making detection and removal a daunting task. The purloined data is then dispatched to the attacker's server. Simultaneously, the content on the device is encrypted using AES encryption, transforming files to the “.enc” format and leaving a ransom message titled “readme_now.txt.”
To safeguard Android devices from the Daam malware and similar threats, CERT-IN has proffered a series of best practices and suggestions:
It's recommended to limit the sources from which you download apps to official app stores, thereby reducing the risk of harmful apps. Before installing an app, even from reliable sources like the Google Play Store, you should meticulously review its details. These include user reviews, download counts, comments, and other available information.
Bad news continues to come for Android users
App permissions warrant close scrutiny. Provide only those permissions that are essential and related to the app's function and avoid granting permissions that might infringe on your privacy.
Steer clear of side-loaded apps. Instead, stick to trusted and reputable sources for your app installations. To enhance security, install updates and patches from your device's vendor on a regular basis as they often contain essential security improvements.
Exercise discretion while online. Be wary of browsing dubious websites or clicking on uncertain links. Links from unsolicited emails or SMS messages can often lead to malware downloads or malevolent websites.
Invest in reliable antivirus and antispyware software. Keep them updated regularly to detect and fend off malware infections. Remain vigilant of suspicious numbers, especially in SMS sender information, and do a thorough check before clicking on any links in messages. Only click on URLs that unequivocally display the website domain. If in doubt, use a search engine to look up the official website of the organization to verify authenticity.