Posted by Stu Sjouwerman on Mon, Sep 22, 2014
Researchers in Russia discovered a new Android ransomware strain which does not lock the device just once but twice. It spreads by using a social engineering trick, disguising itself as a system update, and as soon as the user downloads the app, it asks for admin rights. Once installed, a message is sent to a remote server that the infection is successful.
The "extra" feature is a second lock, which kicks in if the user tries to remove the initial ransomware infection. The command to lock the device can be sent trough the command & control server and also via text. First, the device gets put into stand-by (screen lock) mode and then shows a fake warning that all files will be erased.
http://blog.knowbe4.com/Portals/241394/images/Erase_All_Data.jpg
Full Article
Userlevel 7
Its bad enough people have to worry about one lock.....now its 2 locks. The crooks are getting smarter and smarter.
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.