Content |
Chronicle
2025
Warning of the Ministry of Internal Affairs about sending a virus that steals money from bank cards via SMS
The Ministry of Internal Affairs of Russia warned citizens about the massive sending of SMS messages by scammers with the Mamont virus, which allows attackers to steal money from users' bank cards. The Department of the Ministry of Internal Affairs for organizing the fight against the illegal use of information and communication technologies recorded the intensification of criminal activity using this malicious software. This was announced by the department at the end of July 2025.
According to Russian newspaper"," the cyber police draws attention to the particular danger of messages received by citizens with attached.apk files. This extension is used to install applications on mobile devices under management. operating system Android
Fraudsters use psychological techniques of influence, accompanying malicious files with provocative texts. Attackers send messages with questions "Are you on video?" Or statements "Look, you are in the photo!," Counting on the curiosity of potential victims.
Law enforcers categorically prohibit opening messages with unknown files regardless of the sender. Even if the message came from a familiar contact, there is a risk that his device is already infected with a virus and sends malware automatically.
IT experts note the ability of the Mamont virus to disguise itself as regular text messages that encourage the user to follow the link. This masking significantly increases the likelihood of a successful infection of the device, since users are unaware of the threat.[1]
Spread of the virus in Russia
Management "K" MINISTRY OF INTERNAL AFFAIRS Russia warned about the distribution of malicious software Mamont, which intercepts, push-notices SMS messages and photos from the gallery. The smartphones department announced a new threat on January 24, 2025.
According to the official telegram channel of the UBK of the Ministry of Internal Affairs of Russia, malicious software is distributed through the Telegram messenger in the form of.apk files aimed at different categories of citizens, including military personnel.
Attackers send files with the accompanying text "Are you on the video?" Using the word "video" in various variations of the file name. After opening and installing the application, the device becomes infected with a Trojan.
The malware gets access to push notifications, SMS messages and photos in the device gallery. In addition, the Trojan is able to automatically forward a malicious file to all contacts in the messenger.
The main goal of cybercriminals is to gain access to user payments. At the same time, attackers can use any personal data and information from a smartphone for illegal purposes.
Specialists of the BSC of the Ministry of Internal Affairs of Russia emphasize the critical importance of ignoring messages with unknown files, regardless of the sender, to prevent infection of the device.
Cybersecurity experts note the growing sophistication of social engineering methods used by cybercriminals to spread malicious software through popular instant messengers.
The Ministry of Internal Affairs of Russia recommends that users show increased vigilance when receiving any messages with attachments, even if they come from familiar contacts, since their accounts could be compromised.[2]
Notes
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |