Khaberni - Security experts warn of an advanced spyware known as ZeroDayRAT capable of hijacking a smartphone within seconds of its infection, whether it's on iOS or Android.
This malicious software not only steals passwords but also grants attackers extensive ability to monitor and fully control the device, posing a severe threat to users’ privacy and the security of their data.
Collecting Information
ZeroDayRAT is an advanced spyware designed to infiltrate smartphones, gather a substantial amount of information, and transmit it to a server controlled by the attacker.
Once installed on the device, this software begins to send user data directly to an external control panel, allowing the attacker to access phone notifications, text message data, hardware details, operating system, network activity, and used applications.
They will also be able to access battery levels and lock status. This level of access enables the attacker to draw a precise picture of the user's lifestyle, know their favorite apps, and times of phone use.
Live Monitoring
What distinguishes ZeroDayRAT from traditional spyware is its ability to monitor in real-time; attackers can record every keystroke, track the apps the user opens, the duration of use, activate the front and rear cameras to photograph the user without their knowledge, as well as access the microphone to listen to ongoing conversations, and view the phone’s screen directly as if they were using it themselves.
Financial and Security Threats
The dangers of ZeroDayRAT extend beyond mere spying on personal data, including financial targeting.
The software is capable of intercepting banking applications and notifications, and using what is known as clipboard injection to transfer digital currency funds to the attackers' wallets. Even without full command over the device, this level of access is enough to withdraw funds from the victim’s accounts or steal their digital assets.
Methods of Spread
One concerning aspect of this type of software is that some versions are openly sold on platforms like Telegram, making it easy for anyone to use these tools without needing high technical skills.
Also, installing apps from outside official stores, like downloading APK files from untrusted sources, increases the risks of infection by software like ZeroDayRAT; these stores do not undergo the rigorous security examination as those like Apple and Google’s official stores do.
How can you protect yourself?
Security experts recommend following basic steps to reduce the risk of infection such as downloading applications only from official stores, avoiding suspicious links or unknown messages, and regularly updating the operating system and applications to close security loopholes.
It is also essential to monitor the permissions given to applications, especially those requesting access to the camera or microphone or sensitive data. Following these simple measures can significantly reduce the chances of your phone being hacked and becoming a victim of spyware.
