The DogeRAT malware, a Remote Access Trojan with an insidious agenda, has raised alarms in India's Defense Ministry.

Capable of infiltrating Android devices, TechCrunch reports that this malware poses a significant risk by granting hackers unauthorized access to sensitive data and even complete control over infected smartphones.

DogeRAT Malware Scare

As first spotted by MoneyControl, the Controller General of Defence Accounts, a branch of India's Defense Ministry, issued a stern advisory to citizens on August 24, cautioning against the pernicious DogeRAT malware.

This malicious software, initially uncovered by the cybersecurity startup CloudSEK, is cunningly distributed through popular social media and messaging platforms, camouflaging itself as a legitimate app. 

Notably, it masquerades as seemingly benign applications like ChatGPT, Opera Mini, and premium versions of YouTube, Netflix, and Instagram.

Once infiltrated into a victim's device, DogeRAT operates stealthily, quietly amassing unauthorized access to a treasure trove of sensitive information, including contacts, messages, and banking credentials. 

However, the malware's capabilities extend far beyond mere data pilferage.

A Closer Look at DogeRAT's Arsenal

The advisory further reveals the extent of DogeRAT's sinister capabilities. Once ensconced within an Android device, the malware becomes a puppeteer's tool, enabling hackers to execute various malicious actions. 

These include spamming, initiating unauthorized payments, modifying files, capturing photos and keystrokes, tracking the user's location, and secretly recording audio.

The origin of this cyber threat remains shrouded in mystery, though the advisory underscores that a group of cybercriminals deployed Telegram to propagate counterfeit versions of well-known apps. These apps, seemingly harmless at first glance, contained the lurking DogeRAT malware.

Read Also: Forever 21 Data Breach: Personal Details of Over 500,000 Customers, Employees Compromised

Government's Proactive Measures

In response to this looming menace, India's Defense Ministry has issued stringent guidelines to safeguard its departments and officials. 

They are sternly advised against downloading apps from unverified third-party platforms and cautioned about clicking on links from unknown senders. 

Individuals are encouraged to keep their smartphones up-to-date with the latest software and security patches and install antivirus software to fortify their defenses.

Malware's Global Reach

DogeRAT's audacious author has left digital breadcrumbs for investigators. 

TechCrunch also reports that a post on GitHub reveals the malware's campaign orchestration through a Telegram bot and an open-source NodeJS app hosting platform. 

CloudSEK researchers warn that this malware is not limited to India alone; it possesses ambitions of a global reach.

India's Cybersecurity Battlefield

India's burgeoning digitization and status as the world's second-largest internet market after China has made it a hotspot for cyber threats. 

The Indian IT ministry recently reported a staggering 171% increase in cybersecurity incidents affecting government departments, surging from 70,798 in 2018 to 192,439 in 2022.

Meanwhile, global cybercrime costs are predicted to rise 15% annually over the next five years, reaching $10.5 trillion by 2025.

Stay posted here at Tech Times.

Related Article: Australian Clinic TissuPath Reports Data Breach With 10 Years of Pathology Letters Potentially Exposed