An underground advertisement for the Rogue mobile remote access Trojan (Source: Check Point Research)
A recently identified mobile remote access Trojan dubbed Rogue, which exploits Google s Firebase development platform, targets Android devices to exfiltrate personal data and can deliver other malware, according to the security firm Check Point Research.
The Rogue RAT is being offered for sale or rent in darknet forums, Check Point says in its new report. Once a hacker uses the Trojan, portrayed to victims as a legitimate app, to infect a device, the malware can exfiltrate data, such as photos, location information, contacts and messages. It also can download additional malicious payloads, including mobile ransomware.
Russia
Russian
Malwareakshaya-asokan
Darknet-forumsresearchers
Yaniv-balmas
Google
Android-accessibility-services
Kaspersky
Check-point-software-technologies
Check-point-research
Information-security-media-group
Fraud-management