Published on 26 May 2023 | Updated on 26 May 2023
There are reports of a new ongoing malware campaign targeting Android devices. AhRat, a new remote access trojan (RAT), which is based on an open-source AhMyth Android RAT, has been masquerading as a legitimate application. It has a wide range of capabilities, including tracking infected devices' location, stealing call logs, contacts and text messages, as well as sending SMS messages, taking pictures, and recording background audio. It is reported that this is not the first instance of the AhMyth-based Android malware infiltrating the Google Play store.
Android users are advised to stay vigilant and adopt the following measures to protect their devices against malware:
• Pay attention to the security permissions requested by the application and/or its privacy policy before downloading. Be wary of applications that ask for unnecessary permissions on your device• Ensure that your devices’ operating systems and applications are updated regularly to be protected by the latest security patches
Members of the public may also refer to our joint advisory on The Dangers Of Downloading Applications From Third Party Or Dubious Sites.
More information is available here:
https://www.bleepingcomputer.com/news/security/new-ahrat-android-malware-hidden-in-app-with-50-000-installs/