The New Android Malware “GhostCtrl”

One fresh malware strain is the most sophisticated info-stealer never seen before on Android as it facilitates attackers in creation of one backdoor so they can monitor data, record video and audio, filch info, and even install ransomware on the smart-phone.

Known as GhostCtrl, the malicious program is capable of treacherously regulating several functions of the contaminated phone - while according to security researchers, the problem is only starting since the malicious program may develop in getting still worse.

GhostCtrl belongs to one larger campaign which as well involves RETADUP.A an info-stealing worm created for Windows PCs. It was June 27 when RETADUP was first detected following detection and blockage of samples after attempts were made towards contaminating 2 Israeli hospitals.

When an end-user downloads a corrupted application say from intermediate application marketplaces - while proceeds towards opening the downloaded app, APK (Android Application Package) would install GhostCtrl while direct the end-user towards loading the app. When loaded, GhostCtrl, without any indication, would quietly become active behind screen while the attacker would acquire admission into the hijacked phone. Ibtimes.com posted this on the Web dated July 18, 2017.

Pretending to be popular application archetypes, GhostCtrl more prominently poses as one Pokemon GO copycat. There is hitherto no report about any Play Store application making an invasion; however, it is quite known of the Play Store not being wholly safe. Therefore, one must be careful of applications they download through checks of their metrics as well as permissions, especially when installing Android applications downloaded out of third-party stores.

For minimizing GhostCtrl as well as other likewise viruses, security firm Trend Micro has provided certain measures which end-users require adopting for maintaining their data secured. These are making the device up to date with the most recent firmware, maintaining back ups of the data at particular gaps of time, and limiting application related user permissions. To manage data better, end-users can as well implement multi-layered security techniques. The most appropriate measure for an end-user to adopt for not getting contaminated with GhostCtrl is downloading applications from Google's Play Store alone for their Android handsets.

» SPAMfighter News - 7/21/2017