Mazar Bot is the Latest Most Dangerous Android Malware

Security researchers have issued an alert regarding one fresh malware assault which is aimed at Android users. The malware known as Mazar Bot is served through short serving messages (SMS) even as it acquires the devices' root access, plants computer application, including Tor, as well as fully erases all data from the victim's cell-phone.

To read malware Mazar Bot, multi media messages (MMS) that are booby-trapped are required, and when loaded, the malware acquires administrative privileges, which enables it in doing nearly everything with the victimized user's cell-phone. Mazar Bot is able to read SMS missives, implying it successfully gets around dual-factor validation (2FA systems). It is further able to compose and transmit SMS messages created for critical channel numbers, execute MitM assaults (man in the middle), alternatively completely wipe the compromised phone. To carry out communications, the malware uses the Tor application.

Blogging about the threat, Heimdal Security the security outfit in Denmark cautions that the malware's AV detection rate is presently extremely low. The Bot can be bought via a number of shady websites that have advertised it for the purpose, while its use in active Android attacks is unprecedented, states the security company additionally. Theregister posted this in news on February 15, 2016.

Heimdal Security further blogs that one text message has been examined that was dispatched to random Android users. Since it isn't thus far known to which geographical areas the message was sent, it is recommended that people exercise caution. The security company speculates that attackers are probably testing the malware for perceiving what ways they can make the attack techniques better and eventually reap more monetary gains. Expectedly, Mazar Bot will widen its attack base especially since it remains concealed with the help of Tor that keeps communication hidden, explains Heimdal.

The malicious program doesn't work on Russian cell-phones. However, for remaining safe from the threat, one mustn't ever follow links dispatched via MMS or SMS messages. Moreover, by navigating onto Settings > Security the option reading 'Unknown Sources' must be disabled so that the phone wouldn't load applications from any source except Google Play.

» SPAMfighter News - 2/22/2016