WhatsApp and YouTube users must draw their attention to this dangerous new malware! Meta warned about Android malware that can take all personal information as well as take pictures.
Android phone users are once again at great risk from fake apps! This time, a red alert has been issued by Meta for owners of Android phones and tablets about a creepy new malware hiding in popular apps such as WhatsApp and YouTube. Meta revealed in its recent Quarterly Adversarial Threat Report 2022 that new Dracarys malware is being injected into the cloned version of these popular apps. Not just WhatsApp and YouTube, but even other instant messaging apps such as Signal, Telegram and custom chat apps have been targeted by online criminals.
The latest report revealed that the Dracarys malware, named after a Game of Thrones battle cry for dragons, was deployed by hacking group Bitter APT. This hacking group has carried out attacks in several countries, including the United Kingdom, New Zealand, India, and Pakistan. Meta said in the report, “We discovered that Bitter used a new family of custom Android malware that we named Dracarys. It notably used Accessibility Services, a feature of the Android operating system to help users disabled, to automatically click and grant the app certain permissions without the user having to.
How dangerous is this Android malware?
The Dracarys malware is said to be dangerous for a reason! The malware strain helps hackers steal users’ personal information. The malware is capable of stealing user’s call logs, contact information, files, SMS, geo-location as well as device details. This is not the end ! This malware is even capable of secretly taking photos and activating the microphone of the Android device and installing apps without the user’s knowledge.
The most dangerous part is that the malware can even bypass security check and avoid detection through antivirus system. The meta-report informed: “While malware functionality is fairly standard, at the time of this writing, the malware and its supporting infrastructure have not been detected by existing public anti-virus systems. This shows that Bitter managed to reimplement common malicious functionality in a way that went undetected by the security community for some time.”
All you can do to protect yourself from attack of this malware is to avoid downloading unofficial or fake apps for services like WhatsApp, YouTube, Telegram, Signal or such apps from websites Third-party APKs. Experts have advised Android users to make sure that they download official apps from the Google Play Store.