Bunker Bay, June 9: The Australian Federal Police (AFP) has issued a warning to online users following a significant increase in criminals attempting to steal and control personal data through malicious malware known as Remote Access Trojans (RATs).
RATs are a type of malware that covertly takes unauthorized control of a victim’s electronic device, enabling cybercriminals to steal sensitive information and conduct surveillance without the victim’s knowledge or consent.
According to AFP intelligence, both local and international criminals are actively obtaining and using RATs and similar malware variants to embed viruses into victims’ devices.
Methods of infection include downloadable email attachments disguised as legitimate links and modifications (mods) for computer video games.
Once a RAT is downloaded, the malware automatically installs itself, allowing cybercriminals to control and access webcams, microphones, online credentials, passwords, geolocation data, files, and log history. A single RAT can infect thousands of devices, giving cybercriminals access to extensive amounts of personal data.
In April, the AFP charged an Australian man for allegedly developing and selling a RAT called ‘Firebird’ to numerous customers on a hacking forum website.
AFP Acting Assistant Commissioner Chris Goldsmid highlighted the growing threat of RATs.
“These viruses, known as RATs, are the tools of cybercriminals and are built to spread and take over a victim’s device, just like a plague,” Goldsmid said.
“This is a reminder for all Australians to practice good cyber hygiene and to keep software and virus protection updated. Vulnerabilities in old or unprotected software are often the target for criminals attempting to gain control over a system so the owner can be targeted and exploited.”
Goldsmid warned that cybercriminals can build RATs that evade detection by some antivirus software, meaning users may not be aware that malware is installed on their device. He also noted that RAT-related cyber offenses could escalate into extreme forms of data theft and victim manipulation, including extortion and financial crimes.
“The AFP will continue to target and prosecute criminals purchasing the malware for illegal purposes such as gaining remote access to a victim’s computer, which holds a maximum penalty of 10 years’ imprisonment,” he said.
A 27-year-old man from Geelong was sentenced to a three-year good behavior bond after pleading guilty to five RAT-related offenses. The man had purchased an Orcus RAT from a Canadian national and compromised more than 700 devices. He embedded the RAT in computer game mods to steal data from gamers.
The AFP Cybercrime team has detected and removed malware-infected mods for popular games including PUBG: Battlegrounds, Runescape, Minecraft, and ARK Survival.
In a separate case, the Malta Police Force arrested a 27-year-old Maltese national in February for his alleged involvement in distributing the RAT ‘Warzone,’ following intelligence from the AFP. The individual was part of an international cybercrime network that used ‘Warzone’ to access victims’ personal data.
The criminal use of RAT technology in Australia constitutes offenses under the Criminal Code Act 1995 (Cth), including unauthorized modification of data to cause impairment, which carries a maximum penalty of 10 years’ imprisonment.
For those who suspect they are victims of RAT malware, information on protection and next steps is available at cyber.gov.au.
Media & PR: editor@dailystraits.com. Copyright 2021–Present DailyStraits.com. All rights reserved.