Iranian hackers are apparently showing strong interest in malware that can be launched against Android devices, which are popular over at the Middle East.
The kind of malware that the hackers are interested in are those that can steal data from the Android-powered devices, according to cybersecurity company Recorded Future. Android has an 80 percent mobile market share in the Middle East.
Recorded Future monitors hacking forums, where the firm looks for clues and discussions that could indicate hacking attacks that could be launched in the future.
Looking at the previous six months, Recorded Future noted that there is a high interest in Iranian hacking forums for remote access Trojans, or RATs, that can target Android-powered devices. The discussions cover a variety of RATs, though the most popular topics have been on those that are open source or privately owned.
RATS can be used to listen in to calls and gather text messages and GPS data of Android devices. The most popular tools discussed in Iranian hacking forums were AndroRAT and DroidJack, which are RATs that require just a low level of technical knowledge to launch attacks with.
AndroRat is completely free, with the malware available for the past four years. DroidJack is much newer, only appearing last year, and is not free. DroidJack, which even has its own website, can be purchased for $210, with the malware's developers not exactly secretive about its capabilities. DroidJack is described as malware that can allow hackers to establish control over Android-powered devices with a GUI that is easy to use, along with features that can be used to monitor these devices.
The two RATs are widely available though, and can be packaged into a legitimate Android app's APK to trick users into installing the malware. And because malware receive strong support from the Iranian hacking community, they could remain as popular options for hackers that are looking to attack Android systems in the Middle East.
"As Android currently comprises a majority market share - in regions like the Middle East, Asia, and Africa - and continues to grow, we'll likely continue to see growing interest and new mobile malware campaigns in these regions," warned Recorded Future.