Recently, Security researchers have found a family of malicious apps, which are able to remotely control Android smartphones. These apps are referred to as ‘SonicSpy’ the aggressor used a customized desktop application to inject malicious code into specific apps so a victim might still act with the legitimate practicality of the trojanized apps.
An Iraqi developer has recently created more than thousand android SonicSpy malware samples and making some samples official going onto play store. These apps are mostly the messaging app. It will function like heavely encrypted app Telegram. These apps have been deployed since February 2017, and at least three – Soniac, Hulk Messenger, Troy Chat – managed to bypass security and were listed on the Play Store. At the time of filing this story, these three apps have been taken down by Google. Now the main question arise in user’s mind how to prevent themselves from these malware apps.
Here are some Tips to Avoid SonicSpy Malware Problem (Precautions to be taken to save Yourself from SonicSpy Malware)
1. Disable Java:- Malware has installed through Java security breaches. Apple has already released several updates to patch the Java security holes that allowed Flashback to spread, but you can also go a step further and completely disable Java on the Mac.
2. Update Apps and OS X Software Regularly:- Apple regularly issues Security Updates and many third party apps do as well, therefore regularly updating both your OS X System Software and OS X apps are one of the single best preventative measures you can take to keep your device secure.
3. Disable Adobe Flash/Use a Flash Block Plugin:- Flash has been used as an attack vector in the past, basically it’s a crash-prone battery hog that has occasional security breaches. Many sites use Flash for video and games though, so instead of uninstalling Flash completely we’ll recommend using a Flash block plugin for your web browser. This causes all Flash to be disabled by default until you click to allow individual plugins and instances of the Flash plugin to run, preventing unauthorized Flash from running in a web browser completely. These plugins are free and available for every major browser.
4. Double-Check Anti-Malware Definitions are Enabled:- OS X automatically downloads and maintains a malware definition list which is actively used to combat potential threats and attacks. This is enabled by default, but you can double-check to make sure you’re getting the updates as they arrive by insuring the feature is turned on.
5. Don’t Install Random Software You Didn’t Ask For:- If you see a random pop-up window asking you to install random software you didn’t request, don’t install it. This may sound like common sense, but it’s actually how some Mac malware propagated in the past.