PSA: always update your smartphone | Ratel RAT targets outdated Android phones in ransomware attacks
PSA: always update your smartphone | Ratel RAT targets outdated Android phones in ransomware attacks
An open-source Android malware named 'Ratel RAT' is widely deployed by multiple cybercriminals to attack outdated devices, some aiming to lock them down with a ransomware module that demands payment on Telegram.
If only there was what to install. It's crazy that I have to essentially throw away a perfectly capable device because the manufacturer doesn't provide updates anymore. That if I want security updates.
It's so stupid. All the phones newer than mine have less hardware features so if I replace it I'll have to find new ways of doing a bunch of things. I'm just accepting the risk at this point until manufacturers get their heads out of their asses and make something decent or my carrier stops supporting my phone. I'd have probably bought two more phones since I got this one if everything wasn't a downgrade from what I have currently.
Yeah, it's a shame. Only Google seems to take updates seriously.
Not sure why this is getting downvoted, because it's actually true. Google is the only Android phone manufacturer at the moment, that delivers 7 years of OS security updates + firmware updates, allows the user to unlock the bootloader and re-lock it with custom signing keys to retain full Android Verified Boot. And the ARMv9 MTE is the cherry on top.
A modern Pixel with GrapheneOS is the best thing you can get right now for privacy, security and longevity.
This is why I only buy unlockable devices that have open boot loaders. Making that decision up front means ROM support for a much longer time frame.
I wish security patches would be separated from "look at this new animation while closing the app1!1!1!" update honestly. Why is it so hard to do that?
I think the moral of the story here is more along the lines of "don't install weird off-brand versions of apps from dodgy places" (F-Droid excepted, obviously)
Like what the fuck is a "Black WhatsApp"?
Ratel RAT is spread via various means, but threat actors are typically seen abusing known brands like Instagram, WhatsApp, e-commerce platforms, or antivirus apps to trick people into downloading malicious APKs.
During installation, it requests access to risky permissions, including exemption from battery optimization, to be allowed to run in the background.
Yeah, that's a weird thing to do and then blame on a lack of updates.
"Make sure to extend your car's warranty! I mean, just look at what happened to this drunk driver's car."
I personally really dislike forced updates and how some people try and justify them with examples of people doing dumb shit like this where they literally side load a sketchy APK and grant it all permissions. Why not promote tech literacy instead of blind confidence into updates that are almost never explained in any significant detail? It's honestly just so weird how superstitious it all seems
Like what the fuck is a "Black WhatsApp"?
there are some modded Whatsapp versions that add features that don't exist in the official version, like hiding typing indicator for you while still being able to see the other person's, same with read markers, and so on. while I've never tried any myself, some of them seem to be legitimate.
Title doesn’t really follow the data from the article. Updating your smartphone doesn’t appear to be related to the RAT investigated here. Rather, the researchers note older devices were targeted more often.
This could be an incidental finding.
It's ironic that this website is being posted here. The amount of ads is atrocious, and the scrolling looks like 10fps. Privacy much...