Cybercriminals are constantly looking for new ways to infiltrate devices and circumvent the security of users in order to steal information and money. Now, the cybersecurity company Zimperium reported a malware called RatMiladwhich has the ability to steal information Y record audio remotely without the victims knowing.
According to the information, data to which they have access cyber criminals who developed this malware could potentially be used as a way to gain access to company systems, a means of extortion to the victim and other uses that can increase the feeling of insecurity of the person attacked.
How RatMilad works and how it spreads
Currently, it is located somewhere in Middle Easthowever, this does not imply that users in Europe or Latin America are safe from their activities or that they are less vulnerable.
This malware is usually spread through the messaging app snapshot Telegram, because you can not use as a means of downloading any application within Google Play Store. However, according to Zimperium, once you download it you get a virtual number generator called NumRent, and immediately the malware abuses the permissions requested by the app to download malicious software.
After successful installation, RatMilad proceeds with the Information theft available within the device, the contact list, text messages, call logs, installed applications along with their granted permissions, GPS location, information contained within the SIM carddownloaded files, among other data.
However the malware does not stop only acquiring this information but also can dispose of it by eliminating it, modifying the permissions of the Applications that have already been installed and use the microphone of the device to record users without their consent.
How to avoid being a victim of a cyber attack
The basic recommendations for users not only involve the installation of a antivirus softwarebut it must also be taken into account that the best form of prevention is not to have attitudes that could put the cyber security of people.
It is advisable not to download files or applications from unsafe or unofficial websites, and instead go to Google Play Store.
In addition, it is preferable not to open suspicious links that have been forwarded to users by unknown accounts on networks; Although this attitude prevention It should also apply to profiles of close friends. In case a link is shared, it is better to ask what website redirects and if it was intended to send the link.
On the other hand, it is recommended to establish the two-factor authentication in the accounts of social networks or other platforms that allow it, so that you can have an idea of when some cyber criminal try to access them from an unauthorized device remotely.