This Android Virus Is Stealing Users' Private Data; Govt Issues Warning & Advisory (How To Stop DAAM Virus?)

The Indian Computer Emergency Response Team (CERT-IN) has issued an advisory regarding a new virus for Android.

Named‘ Daam’ it is capable of stealing sensitive data, bypassing antivirus programs, and deploying ransomware on the targeted devices.

How it works

Daam communicates with various Android APK files to access a phone.

As it is distributed through third-party websites, it encrypts files in the phone through the AES encryption algorithm.

Following this, files get deleted from the local storage; only the ones encrypted are left behind, and with ‘.enc’ extension and ‘readme_now.txt,’ a ransom note.

How it affects devices

The malware puts device security in danger through the following means:

• Capable of hacking call recordings and contacts
• Gaining access to the camera
• Modifying passwords
• Capturing screenshots, 
• Stealing SMS
• Downloading/uploading files, and more.

How to protect oneself

• Download only from official app stores to reduce the risk of potentially harmful apps.
• Always review app details, user reviews before downloading it; also, grant only those permissions that are relevant to the purpose of the app.
• Install Android updates as and when available, and only from Android device vendors.
•  Do not browse un-trusted websites or follow un-trusted links.
• Install and maintain updated anti-virus and antispyware software.
• Be vigilant if you see mobile numbers that don’t look like genuine/regular mobile numbers.
• Do not just click on a link provided in a message; do extensive research first.
• Click only those URLs that clearly indicate the website domain; exercise caution towards shortened URLs, primarily those involving bit.ly and tinyurl.
• Use safe browsing tools, filtering tools in antivirus, firewall, and filtering services.
• Before giving any sensitive information, look out for valid encryption certificates by checking for the green lock in a browser’s address bar.
•  In case there is an ‘unusual’ activity in a user’s bank account, the same must be reported immediately to the concerned bank.