The deadly Android Malware even Google had alarmed its users

Published June 25, 2022
Author: Ash Khan

The deadly Android Malware even Google had alarmed its users

Published June 25, 2022
Author: Ash Khan

Google warns Android users of potentially harmful consequences.

Google has confirmed claims of the existence of a very dangerous Android Malware. It has warned victims that they are being targeted.

Threat Analysis Group claimed that Lookout cybersecurity researchers were right. When they found Hermit- a deadly Android malware and alerted consumers of its presence.

Allegedly, Hermit has been created by the Italian software development organization called RCS Lab. It was initially used by state-sponsored entities to target specific persons in both Italy and Kazakhstan.

Extremely dangerous malware

The malware is extremely powerful. Once installed on the device, it can connect to its command and control (C2) server. After connection, it downloads a variety of modules, including call loggers, audio recorders (both ambient and phone calls), photo and video harvesters, SMS and email readers, and location trackers.

Hermit runs on all versions of Android. It can even root the smartphone to provide itself with further access.

However, there is still a hurdle, the software must be downloaded on the device. This is not possible through Google’s official Android repository as it is unavailable there. Instead, the victims are tricked into installing the program using phishing messages. According to a tech news website, the attackers collaborated with the victims’ telecom service providers to push them to do so.

Now that Hermit’s existence has been proven. Google has begun contacting victims to alert them that they are being targeted. At this point, there is no indication of the number of affected persons.

However, considering the malware’s potential, we can suspect it’s just a few high-profile individuals, including politicians, journalists, and human rights activists.

Google has also got an Apple-specific version of the malware. This exploits the company’s corporate developer certificate to allow the program to be sideloaded. It took the use of six new exploits, two of which are zero-days. Apple is already fixing one of these problems right. 

Post Views: 350
0

Popular Tags

API Integration Branding Services Business Cloud Backup storage cloud storage Cloud VPS Server Hosting Database Services Digital Marketing eBay Store Email Hosting Email Marketing & CRM Email security Explainer Video Facebook Ads Fast Vpn FTP hosting GMAIL Google Ads Google Workspace hacked website repair IT Support Services Linux Managed AWS Cloud Managed Azure Cloud Microsoft 365 Microsoft Office 365 Microsoft Teams Integration mobile apps Outlook email Reseller Hosting SEO Services Server Management SIM Hosting Service SMS Services Social Media Marketing SQL Services Transfer Domain Name Vulnerability Assessment web applications Web Hosting Web Maintenance Website Designing website repair services Website Security Wordpress Hosting

Latest Posts