New Android Ransomware Strain Locks The Device Twice

  • 22 September 2014
  • 1 reply
  • 245 views

Userlevel 7
Badge +54
Posted by Stu Sjouwerman on Mon, Sep 22, 2014
 
Researchers in Russia discovered a new Android ransomware strain which does not lock the device just once but twice. It spreads by using a social engineering trick, disguising itself as a system update, and as soon as the user downloads the app, it asks for admin rights. Once installed, a message is sent to a remote server that the infection is successful.
The "extra" feature is a second lock, which kicks in if the user tries to remove the initial ransomware infection. The command to lock the device can be sent trough the command & control server and also via text. First, the device gets put into stand-by (screen lock) mode and then shows a fake warning that all files will be erased. 
 
 
http://blog.knowbe4.com/Portals/241394/images/Erase_All_Data.jpg
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Full Article
 
 
 
 
 
 

1 reply

Userlevel 7
Its bad enough people have to worry about one lock.....now its 2 locks. The crooks are getting smarter and smarter.

Reply