Cert IN.: Android mobile devices have been attacked by the malware 'Daam,
Cert IN.: Android mobile devices have been attacked by the malware 'Daam,
Share:

New Dellhi: Android mobile devices are being infected by the malware 'Daam,' which is spreading quickly, according to a warning from the Indian Computer Emergency Response Team (CERT-In).

The agency claims it has the ability to steal private user data, get past antivirus software, and lock down devices with ransomware. There are various ways that this malware might affect your phone. Here are some tips for avoiding it.

In today's digital world, cybersecurity threats like hacking and phishing are on the rise, and CERT-In is actively working in this area to protect users from such incidents.

Also Read: WhatsApp begins experimenting with video calls' ability to share screens

The government's technology branch is in charge of protecting the internet and preventing cyberattacks. The organisation employs a group of information security experts who are working to increase the safety of India's online environment.

'Daam' is spread via third-party websites or apps that have been downloaded from dubious sources, according to CERT-In. The malware tries to bypass the security check after it has gained access to an Android device.

According to the agency's advisory, it then tries to steal private data like call logs, contacts, and browsing history, kills background processes, and can even access the camera.

Also Read: How much electricity an MNR (miniature nuclear reactor) can generate

Daam's interaction with various Android APK files allows him to access a specific phone. The malware codes files in the targeted device using the AES (Advanced Encryption Standard) algorithm and disseminates itself via third-party websites. The advisory stated that after the removal of other files from the local storage, only the ".enc"-encrypted files and a "readme_now.txt" ransom note are left.

The CERT-In advisory claims that 'Daam' is also capable of changing passwords, taking screenshots, stealing SMS messages, and downloading and uploading files. From the victim's device, it can send all the data to the command-and-control server.

Also Read: OpenAI establishes a $1 million fund for AI regulation proposals

Avoid visiting unreliable websites or clicking on unreliable links. Install and update antivirus and anti-spyware programmes. Always keep an eye out for numbers that don't seem to be genuine mobile phone numbers.

When clicking on shortened URLs involving "bitly," "tinyurl," and other services, use caution. To view the full website domain, use a URL checker or simply place your cursor over the shortened URLs.

Join NewsTrack Whatsapp group
Related News