The Indian Computer Emergency Response Team (Cert-In) is concerned about a new Android malware called ‘Daam.’
This malware can invade mobile phones and access sensitive user information, such as call records, contacts, browsing history, and camera.
It can even bypass antivirus programs and install ransomware on targeted devices.
Here are the characteristics of this malware and preventive tips to keep users safe.
Threat Posed by ‘Daam’
According to Cert-In’s advisory, the ‘Daam’ malware is primarily spread through untrusted or unknown sources like third-party websites or apps.
Once installed on a device, it tries to bypass security checks and gain unauthorised access to personal data.
It can obtain various permissions, including reading history and bookmarks, terminating background processes, and accessing call logs.
‘Daam’ is capable of hacking phone call recordings, stealing contacts, manipulating device passwords, capturing screenshots, intercepting SMS messages, and transferring files.
Furthermore, it uses advanced encryption algorithms to encode files on the victim’s device, leaving behind encrypted files with a “.enc” extension and a ransom note called “readme_now.txt.”
Preventive Measures for Android Users
Cert-In stresses the importance of taking preventive measures to reduce the risk posed by ‘Daam’ and similar malware.
Here are some essential precautions for Android users:
- Be cautious with links: Â Avoid clicking on suspicious links, especially from untrusted websites or unsolicited emails and SMS messages. Exercise caution with shortened URLs and hover over them to reveal the full domain before deciding to proceed.
- Watch out for unusual phone numbers: Be alert for suspicious numbers that don’t resemble legitimate mobile phone numbers. Scammers may use email-to-text services to hide their identities. Genuine bank messages often display a sender ID instead of a phone number.
- Install or update antivirus software: To enhance device security, install reputable antivirus and anti-spyware software. Regularly update these programs to stay protected against evolving threats like ‘Daam.’