A Malware Dubbed ‘Roaming Mantis’ Attacks Smart-Phones Worldwide
The "Roaming Mantis" malware that emerged just a month or two back is fast proliferating globally by contaminating smart-phones via Wi-Fi devices. The early assaults by Roaming Mantis chiefly targeted South East Asian countries; however, it is now able to target mobile owners specifically in countries of Middle East and Europe. The malware hijacks domain name systems and then utilizes compromised routers for contaminating tablets and smart-phones followed with diverting iOS devices onto phishing websites to enable execution of the crypto-mining script CoinHive on PCs. The trick to get victims reach the phishing websites is telling them they require re-logging into the application store.
The perpetrators have even extended the assaults by covering as many as 27 languages some of which are English, Hindi, Russian, Chinese, Spanish and Hebrew so that the contaminations are successfully coordinated. More languages are included through one automatic translator. Zdnet.com posted this online dated May 21, 2018.
Kaspersky explains that Roaming Mantis' DNS hijacking is a most easy and efficacious method of attack. In that the malware hijacks compromised routers' settings compelling the routers for utilizing its malicious DNS servers so that end-users would be diverted onto one malware-tainted website should their devices be linked up with those 'routers.'
As per Kaspersky, the first detection of Roaming Mantis was during March. The news came within Japanese reports that said the routers' DNS settings were being hijacked to divert end-users onto harmful IP addresses. Subsequently, Kaspersky the cyber-security firm published the early investigations of the malware in April 2018. At first Roaming Mantis attacked just Android devices, while currently it's updated for attacking iPhones too.
End-users most contaminated with Roaming Mantis have been identified in Ukraine, Russia as well as India. The malware has further successfully infected devices in Europe along with United States. While experts have identified merely 150 successful assaults, Kaspersky Lab cautions the number may just be a tip of the iceberg representation as hijacking DNS can pose great obstacles in spotting the malware's infections. The security company suggests various steps for avoiding Roaming Mantis, notably loading anti-virus program onto the tainted devices.
» SPAMfighter News - 31-05-2018
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!