.png)
A new Android bug, named MMRat by computer whizzes at Trend Micro, is out there. This sneaky bug can turn on your phone from afar, skip the lock screen, and peek at your private stuff, including bank info.
Trend Micro first spotted this bug in June, and websites like BleepingComputer have talked about it. The tricky part? Regular antivirus tools, like VirusTotal, don’t see it yet. We're not sure how it's spreading, but fake app stores that look like the real Google Play Store might be one way.
What makes MMRat different? It tricks people using Android’s special service, getting them to say "yes" to risky stuff. Once it’s on a phone, it connects to a bad server run by the bug's makers. It then waits for the perfect time, like when you're not using your phone, to wake it up, skip the lock screen, and mess with your bank accounts.
Worse, MMRat can gather all sorts of info from your phone, peek at your contacts, and even watch through your camera. And guess what? It can make itself vanish, leaving no trace.
MMRat has a clever trick called the Protobuf protocol. This lets it take a lot of info from a phone it's infected. Right now, it seems to be focusing on people in Southeast Asia, says Trend Micro. But because it's so sneaky, that might change.
How to Keep Your Phone Safe:
The golden rule: don’t download apps from strangers. Even though it's tempting to get apps from anywhere, it can be risky. Stick to known app stores like Google Play Store, Amazon Appstore, or Samsung's store. Google even has a tool called Play Protect to catch and toss out bad apps. If you want to be extra safe, think about getting a top-notch antivirus app. These can give you more tools, like safe browsing and password helpers.
Even though MMRat is new and sneaky, you can keep safe. Just be picky about what apps you download and where you get them from.