Dendroid is the newest reported malware to hit the Android mobile operating system (OS). It’s a custom “remote access toolkit” (RAT) specifically designed to attack Android users in the US. Sold for $300 in the underground market, Dendroid promises that the malware will remain undetected specially noting that it has evaded Bouncer, Google Play store’s anti-malware security.
Dendroid is seemed to be an evolution of AndroRAT which is said to be the first malware APK binder.
With Dendroid, it will only need a legit carrier app to attach itself with. Users can flawlessly download the innocent but infected app from Google Play. Upon installation, the malware author can now be able to control the Android device.
Dendroid’s promised features include its ability to intercept, block and send SMS; download and take pictures; make audio and video recordings; download web browser history, bookmarks and other online accounts stored on the device; record on-going calls and even open a dialogue box to acquire passwords directly from the user.
Based on its advertisement, Dendroid offers lifetime updates and support for a one-time payment coursed through cryptocurrencies like Bitcoin.
Most of the leading mobile security apps are now able to detect this infection though users are still advised to uncheck the ‘Unknown sources’ setting on their Android device for app downloads and have a mobile security app installed as a first line of defense.