Android users beware: Cybersecurity experts warn about new malware

As we increasingly rely on our smartphones for communication and daily activities, the importance of cybersecurity has never been more pronounced.

For those who have embraced the digital age with open arms, it's crucial to stay informed about potential threats that could compromise your personal information and privacy.

A new warning has emerged for Android users about a particularly insidious malware which could lock devices and compromise your accounts and information.


The Rafel RAT, which stands for Remote Access Trojan, is a type of malware that operates unsuspectingly on devices and could provide cybercriminals with a comprehensive toolkit for remote control.

This alarming news came from cybersecurity experts Antonis Terefos and Bohdan Melnykov of Check Point Research, who have been monitoring the threat.


compressed-pexels-android.jpeg
Android phones with older software are prime targets for the Rafel RAT. Image Credit: Pexels/Mohi Syed


The capabilities of Rafel RAT are extensive and deeply concerning.

'Rafel's features and capabilities—such as remote access, surveillance, data exfiltration, and persistence mechanisms—make it a potent tool for conducting covert operations and infiltrating high-value targets,' they stated.

It could also bypass two-factor authentication—a security measure many of us rely on for added protection.


The Rafel RAT could duplicate actual applications installed on mobile phones—ranging from social media and shopping apps to even antivirus programs.

Unsuspecting users could be downloading these apps without realising that they granted malicious actors control over their phones and data.

The malware could access or delete user data, oversee stored passwords, and more.

Some users also reported that their contacts and messages were accessed, with two-factor authentication messages intercepted and used to gain access to other accounts.

In its most severe form, Rafel RAT could prevent its own uninstallation.

If a user attempts to revoke the application's administrative privileges, the malware could change the password and lock the screen, effectively blocking any intervention.

One of the Rafel RAT's victims had their call history wiped before being directed to a different channel.


The majority of affected Android users had older Samsung phones. The Rafel RAT also impacted Xiaomi, Vivo, and Huawei phone users.

'Newer versions of the operating system typically present more challenges for malware to execute its functions or require more actions from the victim to be effective,' Terefos and Melnykov noted.

'More than 87 per cent of the affected victims run Android versions that are no longer supported and have not received security fixes.'

The prevalence of Rafel RAT should be taken seriously.

It underscores the importance of proactive security measures to secure Android devices against exploitation.

As cybercriminals continue to leverage sophisticated techniques and tools to compromise user privacy and steal sensitive data, adopting a multi-layered approach to cybersecurity is essential.

Update your smartphone's operating system and applications regularly.

Avoid downloading from unknown sources and consider installing reputable security software on your phones as an added layer of protection.
Key Takeaways

  • Android users were warned about Rafel RAT malware, which could lock devices and bypass two-factor authentication.
  • The malware could pull off a range of malicious activities, including data theft and device manipulation.
  • Most victims of Rafel RAT used older Android versions that are no longer supported, making them more vulnerable to attacks.
  • Cybersecurity experts stressed the importance of continual vigilance and proactive security measures to protect devices from similar threats.
Have you encountered any suspicious activity on your Android phone or device? Share your experiences and any tips you have for staying safe online in the comments below.
 
Sponsored
My husband has an Android mobile phone but does no business on his phone so I dont think they can get anything from this except for names on the phone which are only personal. We all get conned into these new gadgets and now what happens. I unfortunately do not trust anyone so will not donate to anyone as who knows whether they are genuine when someone phones for a donation. so sad really
 
It's always alarming when these threats come up, but hey, half the battle is being informed. Now, people must watch out for the apps they download and links they click on. There are also a lot of great resources, like malware analysis for beginners from Guided Hacking, that explain these things well. It helped me with spotting and avoiding these threats. Also, keep your software updated!
 

Join the conversation

News, deals, games, and bargains for Aussies over 60. From everyday expenses like groceries and eating out, to electronics, fashion and travel, the club is all about helping you make your money go further.

Seniors Discount Club

The SDC searches for the best deals, discounts, and bargains for Aussies over 60. From everyday expenses like groceries and eating out, to electronics, fashion and travel, the club is all about helping you make your money go further.
  1. New members
  2. Jokes & fun
  3. Photography
  4. Nostalgia / Yesterday's Australia
  5. Food and Lifestyle
  6. Money Saving Hacks
  7. Offtopic / Everything else

Latest Articles

  • We believe that retirement should be a time to relax and enjoy life, not worry about money. That's why we're here to help our members make the most of their retirement years. If you're over 60 and looking for ways to save money, connect with others, and have a laugh, we’d love to have you aboard.
  • Advertise with us

User Menu

Enjoyed Reading our Story?

  • Share this forum to your loved ones.
Change Weather Postcode×
Change Petrol Postcode×