Skip to main content

Terrifying Android malware Mazar could be used to remotely wipe your phone

history of malware android
Image used with permission by copyright holder
A particularly insidious piece of malware has been seen infecting Android smartphones, highlighting the need for vigilance when receiving messages from unknown sources. Discovered by security company Heimdal the malware is being referred to as Mazar, and apparently gives almost complete remote access to an infected phone, including the ability to reset the device, and erasing all stored data.

Mazar will arrive as an SMS or MMS message and installs a program on the phone giving administrator rights to the attacker. From there, almost nothing is out of bounds, from creating and sending new messages, monitoring activity, making calls, reading existing messages, messing with Chrome, locking the device, and worst of all, erasing the phone.

Recommended Videos

The process is complex, according to Heimdal’s research, and involves the original message, the installation of the program and TOR, connection to a mystery server, and finally the sending of an SMS with the device’s location. Why with the location? Interestingly, the security team discovered Mazar won’t install on devices that have Russian selected as the default language option. It’s noted the malware is available to buy through criminal websites located on the Dark Web, but this is the first time it has been seen attacking Android phones in the wild.

Awkwardly, it’s very difficult for antivirus software to spot, so people concerned about the attack need to take care themselves. The most obvious way to avoid Mazar is to never click on links sent in messages from anyone you don’t know.  If you’re still worried, make sure the option to only install apps from Google Play is active under Settings, and Security on your phone. The malware requires the ability to install apps from unknown sources to be selected. Oh, and if Mazar is your big worry, just start using your phone in Russian.

While concerning, the Mazar malware isn’t going to be particularly common, and there’s an excellent chance you’ll never come into contact with it. Even Heimdal says it doesn’t know how widespread the problem is. That doesn’t mean you shouldn’t be cautious though, because Mazar isn’t the only piece of malware out there that could cause serious problems.

Andy Boxall
Andy is a Senior Writer at Digital Trends, where he concentrates on mobile technology, a subject he has written about for…
Nothing’s Android 15 beta is live, but only for one of its phones
A person holding the Nothing Phone 2a Plus.

If you've been patiently awaiting the launch of Nothing 3.0, it's closer than ever. It's expected to be released in December of this year, but the Nothing 3.0 beta is now available for the Nothing Phone 2a.

Interestingly enough, only the Nothing Phone 2a can download the update right now. The Nothing Phone 2 will get access in November, while the Nothing Phone 1, Nothing Phone 2a Plus, and Nothing CMF Phone 1 will have to wait until December.

Read more
The Samsung Galaxy A16 sets a new record for budget Android phones
Galaxy A16 banner Samsung

We've known that Samsung's next lineup of budget phones was on the way, especially after all of the information that leaked last week. Now, we have confirmation on several elements of the phone, but the most important of them all is the incredible (and unheard of) six years of security patches the Galaxy A16 5G will receive from launch. That means it will be fully up to date until October 31, 2030.

We reported on this possibility a couple of weeks ago, but now it's confirmed — and that's a big deal. Many budget phones only receive two years of security patches post-launch. The Galaxy A16 5G's six years of support puts it only one year behind Samsung's flagship models in the Galaxy S24 series. For a phone as cheap as the Galaxy A16, that's incredible.

Read more
Android phones have started receiving crucial anti-theft features
Android Theft Detection on Pixel 9.

At Google I/O earlier this year, a trio of safety features were announced to keep Android devices safe in events like theft, locking the device, and setting up new guardrails so that the phone won’t accept a fresh setup in the hands of a bad actor.

Some of these changes were supposed to arrive in the same window as Android 15’s public release, which is right around the corner. But according to Mishaal Rahman and 9to5Google, they’ve already started appearing to users in the U.S. following a test in Brazil.

Read more