Security News > 2022 > October > New Android malware 'RatMilad' can steal your data, record audio
A new Android spyware named 'RatMilad' was discovered targeting mobile devices in the Middle East, used to spy on victims and steal data.
The RatMilad spyware was discovered by mobile security firm Zimperium who warned that the malware could be used for cyber espionage, extortion, or to eavesdrop on victim's conversations.
The spyware is distributed through a fake virtual number generator used for activating social media accounts called "NumRent." When installed, the app requests risky permissions and then abuses them to sideload the malicious RatMilad payload. The main distribution channel for the fake app is Telegram, as NumRent, or other trojans carrying RatMilad, aren't available on the Google Play Store or third-party stores.
RatMilad can perform file actions such as deleting files and stealing files, modifying the permissions of the installed app, or even using the device's microphone to record audio and eavesdrop on the room.
Zimperium discovered RatMilad after the spyware failed to load on a customer's device and proceeded to analyze the malware.
"Spyware such as RatMilad is designed to run silently in the background, constantly spying on its victims without raising suspicion," explains Zimperium's report.
News URL
Related news
- TrickMo malware steals Android PINs using fake lock screen (source)
- Russia targets Ukrainian conscripts with Windows, Android malware (source)
- Android malware "FakeCall" now reroutes bank calls to attackers (source)
- New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls (source)
- New Android Banking Malware 'ToxicPanda' Targets Users with Fraudulent Money Transfers (source)
- Cyber crooks push Android malware via letter (source)