Android Malware: record audio, video and steal your data!!

Android Malware: record audio, video and steal your data!!

Warning! Warning! New Malware attacks your android device to record audio, video and steal your data.

Researchers have discovered malware which creates a backdoor into devices, apart of allowing attackers to steal data, record audio and video, they even potentially deploy ransomware into your device.

New form of Malware, claimed to be the most advances Android information-stealer ever. This malware can stealthily control many of the infected device’s functions — and researchers have warned that that this is just the beginning, and the malware could evolve to become a lot worse, dubbed as GhostCtrl”.

Trend Micro discovered that GhostCtrl forms part of a wider campaign targeting Israeli hospitals with the information-stealing Windows RETADUP worm — but the mobile arm of the attack represents an even more dangerous threat to victims.

Basically there are three versions of GhostCtrl:

  1. Steals information and controls some of the device’s functions
  2. Adds more features to hijack, and now the malware is on its
  3. Combines the most advanced capabilities of previous incarnations while adding further malicious capabilities.

Information such as device’s data, including call logs, text message records, contacts, phone numbers, location, and browser history will be targeted. GhostlCtrl can also gather information about the victim’s Android version, wi-fi, battery level, and almost any other activity. GhostCtrl can also stealthily record audio and video, enabling the attackers to conduct full-on espionage on victims.

How the user infected by the GhostCtrl:

  1. Downloading fake versions of legitimate popular apps, including WhatsApp and Pokemon Go
  2. APK contains backdoor functions named ‘com.android.engine’ designed to trick the user into thinking it’s a legitimate application

Android user should updated their device as possible and that enterprises should restrict permissions on company devices to prevent the installation of malware.

Source