India’s Computer Emergency Response Team (CERT IN) issued a advisory regarding “Daam”, which is an Android malware “capable of stealing sensitive data, bypassing anti-virus programs and deploying ransomware to targeted devices”.
How does “Daam” affect a device?
FILE PHOTO: A man holds a laptop computer as cybercode is projected onto him in this illustrative photo taken May 13, 2017. REUTERS/Kacper Pempel // File Photo
{{^userSubrated}} {{/userSubrated}}
{{^userSubrated}} {{/userSubrated}}
According to CERT-IN, the central nodal agency that responds to computer security incidents, Daam communicates with various Android APK files to gain access to a phone. Being distributed through third party websites, it encrypts phone files through AES encryption algorithm.
Following this, the files are deleted from local storage; only encrypted ones are left behind, and with ‘.enc’ and ‘readme_now.txt’ extension, a ransom note.
In what ways can “Daam” affect a device?
The malware, according to the agency, is capable of hacking into call records and contacts; access camera, change passwords, capture screenshots, steal SMS, upload/download files, etc.
How to stay away from ‘Daam’?
CERT-IN has given the following recommendations for keeping a device safe from Daam:
(1.) Download only from official app stores to reduce the risk of potentially harmful apps.
{{^userSubrated}} {{/userSubrated}}
{{^userSubrated}} {{/userSubrated}}
(2.) Always check app details, user reviews before downloading; also only grant permissions that are relevant to the app’s purpose.
(3.) Install Android updates as they become available, and only from Android device vendors.
(4.) Do not browse untrustworthy websites or follow untrustworthy links.
(5.) Install and maintain anti-virus and anti-spyware software.
(6.) Be vigilant if you see mobile numbers that do not look like genuine/regular mobile numbers.
(7.) Do not simply click on a link provided in a message; do some thorough research first.
(8.) Click only on URLs that clearly indicate the domain of the website; exercise caution around shortened URLs, especially those involving bit.ly and tinyurl.
(9.) Use safe browsing tools, filter tools in anti-virus, firewall and filtering services.
{{^userSubrated}} {{/userSubrated}}
{{^userSubrated}} {{/userSubrated}}
(10.) Before giving out sensitive information, look for valid encryption certificates by checking the green padlock in a browser’s address bar.
(11.) In the event of “unusual” activity on a user’s bank account, this must be reported immediately to the relevant bank.