The Indian cyber agency CERT-IN has issued a warning to raise awareness about a highly dangerous Android virus known as “Daam” malware. This malicious software poses a significant risk to Android devices as it compromises personal information, evades antivirus software, and even deploys ransomware. Let’s delve deeper into the details.
Understanding the Threat of ‘Daam’ Malware to Android Devices
According to CERT-IN, the ‘Daam’ malware possesses the capability to retrieve various sensitive information from infected systems. This includes browsing history, call logs, contacts, camera contents, SMS messages, and files. The malware employs tactics to bypass security protocols, making it challenging to detect and eliminate.
Infection occurs through communication with multiple Android APK files. The malware is typically distributed through third-party websites or programs obtained from questionable or unknown sources.
Once the data is stolen, it is sent to the attacker’s server, and the contents of the device are encrypted using AES encryption. This leads to the creation of “.enc” files and a ransom note named “readme_now.txt.”
Protective Measures Against ‘Daam’ Malware for Android Devices
CERT-IN has provided a set of recommended practices and suggestions to safeguard Android devices from the ‘Daam’ malware and related risks. Let’s explore these essential guidelines:
- Download apps only from legitimate app stores authorized by your device’s maker or operating system. This minimizes the chances of installing potentially harmful apps.
- Prior to downloading or installing an app, evaluate its specifications, download statistics, user reviews, and other relevant information.
- Regularly update your Android device with the latest updates and patches released by the manufacturers.
- Exercise caution while browsing websites and clicking on links, particularly in unsolicited emails and SMS messages. Avoid visiting unreliable websites.
- Keep your anti-virus and anti-spyware software up to date and ensure their installation.
- Before clicking on any message link, conduct thorough research. Utilize websites that offer phone number search services to verify the legitimacy of a number.
- Click on URLs that clearly state the website domain. If unsure, use search engines to directly access the organization’s website for verification.
- Consider utilizing Safe Browsing tools, filtering services, antivirus software, and content-based screening solutions.
- Exercise caution with shortened URLs generated by services like bit.ly and tinyurl.
- When providing sensitive information, such as personal details or account login credentials, look for genuine encryption certificates indicated by a green lock in the browser’s address bar.
- Report any unexpected activity in your account to your bank immediately, providing them with all necessary information for appropriate action.
