CERT-In, the Computer Emergency Response Team of India, has alerted Android users of a new malicious Trojan called ‘Dendroid’, which is capable of taking over your smartphone and intercepting the incoming and outgoing messages. The malicious toolkit Dendroid once activated, may force upon the device’s server thus compromising the SMSes sent or received by the device.
CERT-In alerted this about the virus-
It has been reported that a malicious toolkit called DENDROID is being used to create trojanised applications that infects Android-based smartphones. The malware is created by modifying the required permissions by any clean APK (Android Application Package) with Dendroid RAT (Remote Administration Tool) functionality that allows detailed management of the infected devices.
The response team has also referred to the virus as an ‘attack toolkit’ due to the many nasty functions it can perform on your Android handset. Once the Dendroid application is installed, a remote attacker gets control over the affected phone and can control it remotely. The virus was first picked up by Symantec. These are the many things that the Dendroid may perform (as listed on the Symantec blog)-
- Delete call logs
- Call a phone number
- Open Web pages
- Record calls and audio
- Intercept text messages
- Take and upload photos and videos
- Open an application
- Initiate a HTTP flood (DoS) for a period of time
- Change the command-and-control (C&C) server
This RAT could take almost complete control over your handset, and CERT-In has issued several countermeasures to keep this Trojan from spreading. Firstly, do not download or install apps from unknown and untrusted sources. Also check the several permissions required before installing an application. Run a full system anti-virus scan on your handset. Also, it’s recommended for users to install presently available Android patches/updates to better their phone’s security.